When a large organization discovers that it is the subject of a network probe, which of the following actions should be taken?

• A.Reboot the router connecting the DMZ to the firewall
• B.Power down all servers located on the DMZ segment
• C.Monitor the probe and isolate the affected segment
• D.Enable server trace logging on the affected segment

Comment: *

Name: *

Email: *

Verification: *

A security awareness program should:

• A.present top management's perspective.
• B.address details on specific exploits.
• C.address specific groups and roles.
• D.promote security department procedures.

Comment: *

Name: *

Email: *

Verification: *

When recommending a preventive control against cross-site scripting in web applications, an information security manager is MOST likely to suggest:

• A.using https in place of http
• B.coding standards and code review
• C.consolidating multiple sites into a single portal
• D.hardening of the web server's operating system

Comment: *

Name: *

Email: *

Verification: *

A business previously accepted the risk associated with a zero-day vulnerability. The same vulnerability was recently exploited in a high-profile attack on another organization in the same industry. Which of the following should be the information security manager's FIRST course of action?

• A.Reassess the risk in terms of likelihood and impact.
• B.Evaluate the cost of remediating the vulnerability.
• C.Develop best and worst case scenarios.
• D.Report the breach of the other organization to senior management.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST effective way to mitigate the risk of data loss in the event of a stolen laptop?

• A.Encrypting the hard drive
• B.Providing end-user awareness training focused on traveling with laptops
• C.Deploying end-point data loss prevention software on the laptop
• D.Utilizing a strong password

Comment: *

Name: *

Email: *

Verification: *