Question 1

During a post-mortem incident review meeting, it is noted that a malicious attacker attempted to achieve network persistence by using vulnerabilities that appeared to be lower risk but ultimately allowed the attacker to escalate their privileges. Which ofthe following did the attacker MOST likely apply?

Options :

A : Exploit chaining

B : Brute force attack

C : Cross-site scripting

D : Deployment of rogue wireless access points

Answer: A

Question 2

Which of the following is a security feature provided by the WS-Security extension in the Simple Object Access Protocol (SOAP)?

Options :

A : Transport Layer Security (TLS)

B : Message confidentiality

C : MaIware protection

D : Session management

Answer: B

Question 3

Which ofthe following is the PRIMARY purpose of load balancers in cloud networking?

Options :

A : Distributing traffic between multiple servers

B : Optimizing database queries

C : Monitoring network traffic

D : Load testing applications

Answer: A

Question 4

Which of the following is theMOSTimportant component oftheasset decommissioning process from a data risk perspective?

Options :

A : Informing the data owner when decommissioning is complete

B : Destruction of data on the assets

C : Updating the asset status in the configuration management database (CMD8)

D : Removing the monitoring of the assets

Answer: B

Question 5

Which of the following is the PRIMARY benefit of using software-defined networking for network security?

Options :

A : It simplifies network topology and reduces complexity.

B : It provides greater scalability and flexibility for network devices.

C : It allows for centralized security management and control.

D : It Improves security monitoring and alerting capabilities.

Answer: C