The second line of defense in cybersecurity includes:

• A.conducting organization-wide control self-assessments.
• B.risk management monitoring, and measurement of controls.
• C.separate reporting to the audit committee within the organization.
• D.performing attack and breach penetration testing.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a passive activity that could be used by an attacker during reconnaissance to gather information about an organization?

• A.Using open source discovery
• B.Scanning the network perimeter
• C.Social engineering
• D.Crafting counterfeit websites

Comment: *

Name: *

Email: *

Verification: *

Within the NIST core cybersecurity framework, which function is associated with using organizational understanding to minimize risk to systems, assets, and data?

• A.Detect
• B.Identify
• C.Recover
• D.Respond

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the GREATEST risk pertaining to sensitive data leakage when users set mobile devices to "always on" mode?

• A.An adversary can predict a user's login credentials.
• B.Mobile connectivity could be severely weakened.
• C.A user's behavior pattern can be predicted.
• D.Authorization tokens could be exploited.

Comment: *

Name: *

Email: *

Verification: *