ExamGecko
Search Search Login
Home Home / ECCouncil / 712-50

ECCouncil 712-50 Practice Test - Questions Answers, Page 25

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving savings called?
When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability. What would be the BEST approach for the CISO to reassure the IT group?
A Security Operations Manager is finding it difficult to maintain adequate staff levels to monitor security operations during off-hours. To reduce the impact of staff shortages and increase coverage during off-hours, the SecOps manager is considering outsourcing off-hour coverage. What Security Operations Center (SOC) model does this BEST describe?
To make sure that the actions of all employees, applications, and systems follow the organization's rules and regulations can BEST be described as which of the following?
As the CISO, you are the project sponsor for a highly visible log management project. The objective of the project is to centralize all the enterprise logs into a security information and event management (SIEM) system. You requested the results of the performance quality audits activity. The performance quality audit activity is done in what project management process group?
You have been hired as the Information System Security Officer (ISSO) for a US federal government agency. Your role is to ensure the security posture of the system is maintained. One of your tasks is to develop and maintain the system security plan (SSP) and supporting documentation. Which of the following is NOT documented in the SSP?
An organization licenses and uses personal information for business operations, and a server containing that information has been compromised. What kind of law would require notifying the owner or licensee of this incident?
When managing the security architecture for your company you must consider:
A company wants to fill a Chief Information Security Officer position. Which of the following qualifications and experience would be MOST desirable in a candidate?

Question 241

Report
Export
Collapse

In terms of supporting a forensic investigation, it is now imperative that managers, first-responders, etc., accomplish the following actions to the computer under investigation:

A.
Secure the area and shut-down the computer until investigators arrive
A.
Secure the area and shut-down the computer until investigators arrive
Answers
B.
Secure the area and attempt to maintain power until investigators arrive
B.
Secure the area and attempt to maintain power until investigators arrive
Answers
C.
Immediately place hard drive and other components in an anti-static bag
C.
Immediately place hard drive and other components in an anti-static bag
Answers
D.
Secure the area.
D.
Secure the area.
Answers
Suggested answer: B

Question 242

Report
Export
Collapse

What is the term describing the act of inspecting all real-time Internet traffic (i.e., packets) traversing a major Internet backbone without introducing any apparent latency?

A.
Traffic Analysis
A.
Traffic Analysis
Answers
B.
Deep-Packet inspection
B.
Deep-Packet inspection
Answers
C.
Packet sampling
C.
Packet sampling
Answers
D.
Heuristic analysis
D.
Heuristic analysis
Answers
Suggested answer: B

Question 243

Report
Export
Collapse

Which of the following is MOST important when tuning an Intrusion Detection System (IDS)?

A.
Trusted and untrusted networks
A.
Trusted and untrusted networks
Answers
B.
Type of authentication
B.
Type of authentication
Answers
C.
Storage encryption
C.
Storage encryption
Answers
D.
Log retention
D.
Log retention
Answers
Suggested answer: A

Question 244

Report
Export
Collapse

Which of the following is the MAIN security concern for public cloud computing?

A.
Unable to control physical access to the servers
A.
Unable to control physical access to the servers
Answers
B.
Unable to track log on activity
B.
Unable to track log on activity
Answers
C.
Unable to run anti-virus scans
C.
Unable to run anti-virus scans
Answers
D.
Unable to patch systems as needed
D.
Unable to patch systems as needed
Answers
Suggested answer: A

Question 245

Report
Export
Collapse

The process of identifying and classifying assets is typically included in the

A.
Threat analysis process
A.
Threat analysis process
Answers
B.
Asset configuration management process
B.
Asset configuration management process
Answers
C.
Business Impact Analysis
C.
Business Impact Analysis
Answers
D.
Disaster Recovery plan
D.
Disaster Recovery plan
Answers
Suggested answer: B

Question 246

Report
Export
Collapse

Which of the following is a symmetric encryption algorithm?

A.
3DES
A.
3DES
Answers
B.
MD5
B.
MD5
Answers
C.
ECC
C.
ECC
Answers
D.
RSA
D.
RSA
Answers
Suggested answer: A

Question 247

Report
Export
Collapse

You are having a penetration test done on your company network and the leader of the team says they discovered all the network devices because no one had changed the Simple Network Management Protocol (SNMP) community strings from the defaults. Which of the following is a default community string?

A.
Execute
A.
Execute
Answers
B.
Read
B.
Read
Answers
C.
Administrator
C.
Administrator
Answers
D.
Public
D.
Public
Answers
Suggested answer: D

Question 248

Report
Export
Collapse

As a CISO you need to understand the steps that are used to perform an attack against a network. Put each step into the correct order.

A.
Covering tracks
A.
Covering tracks
Answers
B.
Scanning and enumeration
B.
Scanning and enumeration
Answers
C.
Maintaining Access
C.
Maintaining Access
Answers
D.
Reconnaissance
D.
Reconnaissance
Answers
E.
Gaining Access
E.
Gaining Access
Answers
F.
4, 2, 5, 3, 1
F.
4, 2, 5, 3, 1
Answers
G.
2, 5, 3, 1, 4
G.
2, 5, 3, 1, 4
Answers
H.
4, 5, 2, 3, 1
H.
4, 5, 2, 3, 1
Answers
I.
4, 3, 5, 2, 1
I.
4, 3, 5, 2, 1
Answers
Suggested answer: A

Question 249

Report
Export
Collapse

What type of attack requires the least amount of technical equipment and has the highest success rate?

A.
War driving
A.
War driving
Answers
B.
Operating system attacks
B.
Operating system attacks
Answers
C.
Social engineering
C.
Social engineering
Answers
D.
Shrink wrap attack
D.
Shrink wrap attack
Answers
Suggested answer: C

Question 250

Report
Export
Collapse

Physical security measures typically include which of the following components?

A.
Physical, Technical, Operational
A.
Physical, Technical, Operational
Answers
B.
Technical, Strong Password, Operational
B.
Technical, Strong Password, Operational
Answers
C.
Operational, Biometric, Physical
C.
Operational, Biometric, Physical
Answers
D.
Strong password, Biometric, Common Access Card
D.
Strong password, Biometric, Common Access Card
Answers
Suggested answer: A
Total 460 questions
Go to page: of 46
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms