Question 1

Which security technology allows only a set of pre-approved applications to run on a system?

Options :

A : application-level blacklisting

B : host-based IPS

C : application-level whitelisting

D : antivirus

Answer: C

Question 2

Refer to the exhibit.

Which stakeholders must be involved when a company workstation is compromised?

Options :

A : Employee 1 Employee 2, Employee 3, Employee 4, Employee 5, Employee 7

B : Employee 1, Employee 2, Employee 4, Employee 5

C : Employee 4, Employee 6, Employee 7

D : Employee 2, Employee 3, Employee 4, Employee 5

Answer: D

Question 3

A user received a malicious email attachment named "DS045-report1122345.exe" and executed it. In which step of the Cyber Kill Chain is this event?

Options :

A : reconnaissance

B : delivery

C : weaponization

D : installation

Answer: B

Question 4

What is the difference between deep packet inspection and stateful inspection?

Options :

A : Stateful inspection verifies contents at Layer 4. and deep packet inspection verifies connection at Layer 7.

B : Stateful inspection is more secure than deep packet inspection on Layer 7.

C : Deep packet inspection is more secure than stateful inspection on Layer 4.

D : Deep packet inspection allows visibility on Layer 7, and stateful inspection allows visibility on Layer 4.

Answer: D

Question 5

What is an example of social engineering attacks?

Options :

A : receiving an unexpected email from an unknown person with an attachment from someone in the same company

B : receiving an email from human resources requesting a visit to their secure website to update contact information

C : sending a verbal request to an administrator who knows how to change an account password

D : receiving an invitation to the department-s weekly WebEx meeting

Answer: C