An organization recently acquired a Data Loss Prevention (DLP) solution, and two months after the implementation, it was found that sensitive data was posted to numerous Dark Web sites. The DLP application was checked, and there are no apparent malfunctions and no errors.What is the MOST likely reason why the sensitive data was posted?

A risk assessment was not performed after purchasing the DLP solution

The DLP Solution was not integrated with mobile device anti-malware

Data classification was not properly performed on the assets

The sensitive data was not encrypted while at rest

A risk assessment was not performed after purchasing the DLP solution

The main purpose of the SOC is:

The coordination of personnel, processes and technology to identify information security events and provide timely response and remediation

An organization which provides Tier 1 support for technology issues and provides escalation when needed

A distributed organization which provides intelligence to governments and private sectors on cyber-criminal activities

The coordination of personnel, processes and technology to identify information security events and provide timely response and remediation

A device which consolidates event logs and provides real-time analysis of security alerts generated by applications and network hardware

When obtaining new products and services, why is it essential to collaborate with lawyers, IT security professionals, privacy professionals, security engineers, suppliers, and others?

It helps to avoid regulatory or internal compliance issues

This makes sure the files you exchange aren't unnecessarily flagged by the Data Loss Prevention (DLP) system

Contracting rules typically require you to have conversations with two or more groups

Discussing decisions with a very large group of people always provides a better outcome

It helps to avoid regulatory or internal compliance issues

When reviewing a Solution as a Service (SaaS) provider's security health and posture, which key document should you review?

SaaS provider's website certifications and representations (certs and reps)

Statement from SaaS provider attesting their ability to secure your data

What is a Statement of Objectives (SOA)?

A section of a contract that defines tasks to be performed under said contract

An outline of what the military will do during war

A document that outlines specific desired outcomes as part of a request for proposal

Business guidance provided by the CEO

During a cyber incident, which non-security personnel might be needed to assist the security team?

Threat analyst, IT auditor, forensic analyst

Network engineer, help desk technician, system administrator

Financial analyst, payroll clerk, HR manager

With a focus on the review and approval aspects of board responsibilities, the Data Governance Council recommends that the boards provide strategic oversight regarding information and information security, include these four things:

Understanding criticality of information and information security, review investment in information security, endorse development and implementation of a security program, and require regular reports on adequacy and effectiveness

Metrics tracking security milestones, understanding criticality of information and information security, visibility into the types of information and how it is used, endorsement by the board of directors

Annual security training for all employees, continual budget reviews, endorsement of the development and implementation of a security program, metrics to track the program

Understanding criticality of information and information security, review investment in information security, endorse development and implementation of a security program, and require regular reports on adequacy and effectiveness

Endorsement by the board of directors for security program, metrics of security program milestones, annual budget review, report on integration and acceptance of program

A university recently hired a CISO. One of the first tasks is to develop a continuity of operations plan (COOP).In developing the business impact assessment (BIA), which of the following MOST closely relate to the data backup and restoral?

Maximum Tolerable Downtime (MTD)

A key cybersecurity feature of a Personal Identification Verification (PIV) Card is:

It has the user's photograph to help ID them

Inability to export the private certificate/key

It can double as physical identification at the DMV

It has the user's photograph to help ID them

It can be used as a secure flash drive

You have been hired as the Information System Security Officer (ISSO) for a US federal government agency. Your role is to ensure the security posture of the system is maintained. One of your tasks is to develop and maintain the system security plan (SSP) and supporting documentation.Which of the following is NOT documented in the SSP?

The results of a third-party audits and recommendations

The controls in place to secure the system

The results of a third-party audits and recommendations

Type of information used in the system

Who should be involved in the development of an internal campaign to address email phishing?

Business Unite Leaders, CISO, CIO and CEO

Business unit leaders, CIO, CEO

Business Unite Leaders, CISO, CIO and CEO

When evaluating a Managed Security Services Provider (MSSP), which service(s) is/are most important:

Ability to provide security services tailored to the business' needs

What is the MOST critical output of the incident response process?

Lessons learned from the incident, so they can be incorporated into the incident response processes

A complete document of all involved team members and the support they provided

Recovery of all data from affected systems

Lessons learned from the incident, so they can be incorporated into the incident response processes

Clearly defined documents detailing standard evidence collection and preservation processes

The primary responsibility for assigning entitlements to a network share lies with which role?

Chief Information Officer (CIO)

What does RACI stand for?

Responsible, Accountable, Consulted, and Informed

Reasonable, Actionable, Controlled, and Implemented

Responsible, Actors, Consult, and Instigate

Responsible, Accountable, Consulted, and Informed

Review, Act, Communicate, and Inform

What key technology can mitigate ransomware threats?

Application of multiple end point anti-malware solutions

Blocking use of wireless networks

A Security Operations (SecOps) Manager is considering implementing threat hunting to be able to make better decisions on protecting information and assets.What is the MAIN goal of threat hunting to the SecOps Manager?

Improve discovery of valid detected events

Enhance tuning of automated tools to detect and prevent attacks

Replace existing threat detection strategies

Validate patterns of behavior related to an attack

A bastion host should be placed:

Beyond the outer perimeter firewall

In-line with the data center firewall

Beyond the outer perimeter firewall

As the gatekeeper to the organization's honeynet

Optical biometric recognition such as retina scanning provides access to facilities through reading the unique characteristics of a person's eye.However, authorization failures can occur with individuals who have?

Two different colored eyes (heterochromia iridium)

Which of the following is the MOST effective method to counter phishing attacks?

Host based Intrusion Detection System (IPS)

Acceptable use guide signed by all system users

You have been promoted to the CISO of a big-box retail store chain reporting to the Chief Information Officer (CIO). The CIO's first mandate to you is to develop a cybersecurity compliance framework that will meet all the store's compliance requirements.Which of the following compliance standard is the MOST important to the organization?

Payment Card Industry (PCI) Data Security Standard (DSS)

The Federal Risk and Authorization Management Program (FedRAMP)

Payment Card Industry (PCI) Data Security Standard (DSS)

In defining a strategic security plan for an organization, what should a CISO first analyze?

Analyze the broader organizational strategic plan

Reach out to a business similar to yours and ask for their plan

Set goals that are difficult to attain to drive more productivity

Review business acquisitions for the past 3 years

Analyze the broader organizational strategic plan

An auditor is reviewing the security classifications for a group of assets and finds that many of the assets are not correctly classified.What should the auditor's NEXT step be?

Document the missing classifications

Immediately notify the board of directors of the organization as to the finding

Correct the classifications immediately based on the auditor's knowledge of the proper classification

Document the missing classifications

Identify the owner of the asset and induce the owner to apply a proper classification

What are the common data hiding techniques used by criminals?

Encryption, Steganography, and Changing Metadata/Timestamps

Website defacement and log manipulation

Disabled Logging and admin elevation

Encryption, Steganography, and Changing Metadata/Timestamps

When managing a project, the MOST important activity in managing the expectations of stakeholders is:

To facilitate proper communication regarding outcomes

To force stakeholders to commit ample resources to support the project

To facilitate proper communication regarding outcomes

To assure stakeholders commit to the project start and end dates in writing

To finalize detailed scope of the project at project initiation

ECCouncil 712-50 Practice Test 11 - Free Online Exam Prep & Questions

APLU Limited has recently suffered a security breach with customers' social security number available on the dark web for sale. The CISO, during the time of the incident, has been fired, and you have been hired as the replacement. The analysis of the breach found that the absence of an insider threat program, lack of least privilege policy, and weak access control was to blame. You would like to implement key performance indicators to mitigate the risk.

Which metric would meet the requirement?

Become a Premium Member for full access

Unlock Premium Member

ECCouncil 712-50 Practice Test 11

Question

ECCouncil 712-50 Practice Tests

Practice Tests