ExamGecko
Search Search Login
Home Home / ECCouncil / 712-50

ECCouncil 712-50 Practice Test - Questions Answers, Page 27

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving savings called?
When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability. What would be the BEST approach for the CISO to reassure the IT group?
A Security Operations Manager is finding it difficult to maintain adequate staff levels to monitor security operations during off-hours. To reduce the impact of staff shortages and increase coverage during off-hours, the SecOps manager is considering outsourcing off-hour coverage. What Security Operations Center (SOC) model does this BEST describe?
To make sure that the actions of all employees, applications, and systems follow the organization's rules and regulations can BEST be described as which of the following?
As the CISO, you are the project sponsor for a highly visible log management project. The objective of the project is to centralize all the enterprise logs into a security information and event management (SIEM) system. You requested the results of the performance quality audits activity. The performance quality audit activity is done in what project management process group?
You have been hired as the Information System Security Officer (ISSO) for a US federal government agency. Your role is to ensure the security posture of the system is maintained. One of your tasks is to develop and maintain the system security plan (SSP) and supporting documentation. Which of the following is NOT documented in the SSP?
An organization licenses and uses personal information for business operations, and a server containing that information has been compromised. What kind of law would require notifying the owner or licensee of this incident?
When managing the security architecture for your company you must consider:
A company wants to fill a Chief Information Security Officer position. Which of the following qualifications and experience would be MOST desirable in a candidate?

Question 261

Report
Export
Collapse

Which of the following is a countermeasure to prevent unauthorized database access from web applications?

A.
Session encryption
A.
Session encryption
Answers
B.
Removing all stored procedures
B.
Removing all stored procedures
Answers
C.
Input sanitization
C.
Input sanitization
Answers
D.
Library control
D.
Library control
Answers
Suggested answer: C

Question 262

Report
Export
Collapse

Which of the following statements about Encapsulating Security Payload (ESP) is true?

A.
It is an IPSec protocol.
A.
It is an IPSec protocol.
Answers
B.
It is a text-based communication protocol.
B.
It is a text-based communication protocol.
Answers
C.
It uses TCP port 22 as the default port and operates at the application layer.
C.
It uses TCP port 22 as the default port and operates at the application layer.
Answers
D.
It uses UDP port 22
D.
It uses UDP port 22
Answers
Suggested answer: A

Question 263

Report
Export
Collapse

The ability to hold intruders accountable in a court of law is important. Which of the following activities are needed to ensure the highest possibility for successful prosecution?

A.
Well established and defined digital forensics process
A.
Well established and defined digital forensics process
Answers
B.
Establishing Enterprise-owned Botnets for preemptive attacks
B.
Establishing Enterprise-owned Botnets for preemptive attacks
Answers
C.
Be able to retaliate under the framework of Active Defense
C.
Be able to retaliate under the framework of Active Defense
Answers
D.
Collaboration with law enforcement
D.
Collaboration with law enforcement
Answers
Suggested answer: A

Question 264

Report
Export
Collapse

Network Forensics is the prerequisite for any successful legal action after attacks on your Enterprise Network. Which is the single most important factor to introducing digital evidence into a court of law?

A.
Comprehensive Log-Files from all servers and network devices affected during the attack
A.
Comprehensive Log-Files from all servers and network devices affected during the attack
Answers
B.
Fully trained network forensic experts to analyze all data right after the attack
B.
Fully trained network forensic experts to analyze all data right after the attack
Answers
C.
Uninterrupted Chain of Custody
C.
Uninterrupted Chain of Custody
Answers
D.
Expert forensics witness
D.
Expert forensics witness
Answers
Suggested answer: C

Question 265

Report
Export
Collapse

The general ledger setup function in an enterprise resource package allows for setting accounting periods. Access to this function has been permitted to users in finance, the shipping department, and production scheduling. What is the most likely reason for such broad access?

A.
The need to change accounting periods on a regular basis.
A.
The need to change accounting periods on a regular basis.
Answers
B.
The requirement to post entries for a closed accounting period.
B.
The requirement to post entries for a closed accounting period.
Answers
C.
The need to create and modify the chart of accounts and its allocations.
C.
The need to create and modify the chart of accounts and its allocations.
Answers
D.
The lack of policies and procedures for the proper segregation of duties.
D.
The lack of policies and procedures for the proper segregation of duties.
Answers
Suggested answer: D

Question 266

Report
Export
Collapse

While designing a secondary data center for your company what document needs to be analyzed to determine to how much should be spent on building the data center?

A.
Enterprise Risk Assessment
A.
Enterprise Risk Assessment
Answers
B.
Disaster recovery strategic plan
B.
Disaster recovery strategic plan
Answers
C.
Business continuity plan
C.
Business continuity plan
Answers
D.
Application mapping document
D.
Application mapping document
Answers
Suggested answer: B

Question 267

Report
Export
Collapse

Security related breaches are assessed and contained through which of the following?

A.
The IT support team.
A.
The IT support team.
Answers
B.
A forensic analysis.
B.
A forensic analysis.
Answers
C.
Incident response
C.
Incident response
Answers
D.
Physical security team.
D.
Physical security team.
Answers
Suggested answer: C

Question 268

Report
Export
Collapse

Which of the following backup sites takes the longest recovery time?

A.
Cold site
A.
Cold site
Answers
B.
Hot site
B.
Hot site
Answers
C.
Warm site
C.
Warm site
Answers
D.
Mobile backup site
D.
Mobile backup site
Answers
Suggested answer: A

Question 269

Report
Export
Collapse

What is the FIRST step in developing the vulnerability management program?

A.
Baseline the Environment
A.
Baseline the Environment
Answers
B.
Maintain and Monitor
B.
Maintain and Monitor
Answers
C.
Organization Vulnerability
C.
Organization Vulnerability
Answers
D.
Define Policy
D.
Define Policy
Answers
Suggested answer: A

Question 270

Report
Export
Collapse

Your incident handling manager detects a virus attack in the network of your company. You develop a signature based on the characteristics of the detected virus. Which of the following phases in the incident handling process will utilize the signature to resolve this incident?

A.
Containment
A.
Containment
Answers
B.
Recovery
B.
Recovery
Answers
C.
Identification
C.
Identification
Answers
D.
Eradication
D.
Eradication
Answers
Suggested answer: D

Explanation:

Topic 5, Strategic Planning & Finance.

Total 460 questions
Go to page: of 46
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms