Question 1

Which of the following best describes the responsibilities of the cloud service provider (CSP) and the customer in the Infrastructure as a Service (IaaS) cloud service model?

Options :

A : The CSP manages the underlying physical infrastructure, including networking and servers, while the customer is responsible for managing the operating system, middleware, and applications.

B : The CSP takes full responsibility for all aspects of security, including operating systems, applications, and customer data.

C : The CSP is responsible for securing the application data, while the customer is responsible for maintaining the physical hardware.

D : The CSP manages physical security and application security, while the customer is responsible for networking and hardware.

Answer: A

Question 2

You are a junior cybersecurity analyst investigating a breach in your organization’s system. During your analysis, you find an unpatched software application and evidence that a threat actor leveraged it to gain unauthorized access to sensitive data. Which of the following statements correctly differentiate between vulnerabilities and exploits in the context of this scenario? (Choose two)

Options :

A : A vulnerability is a weakness in the system that can potentially be exploited by a threat actor.

B : A vulnerability always leads to a system compromise, while an exploit only has potential risks.

C : An exploit takes advantage of a vulnerability to execute unauthorized actions on a system.

D : Vulnerabilities are caused solely by unpatched software, while exploits result only from malware usage.

E : An exploit is a deliberate action taken to fix a system’s vulnerability and prevent breaches.

Answer: A,C

Question 3

A cybersecurity team deploys an Intrusion Prevention System (IPS) to enhance their threat prevention capabilities. Soon after deployment, they notice that legitimate traffic is being blocked. What is the most likely cause of this issue?

Options :

A : Lack of encryption on the network

B : Incorrect user access permissions

C : Overly strict IPS signature rules

D : Firewall misconfigurations

Answer: C

Question 4

A computer in a local network is configured with an IP address of 192.168.1.10 and a subnet mask of 255.255.255.0. It attempts to communicate with a web server at 203.0.113.5. What role does the default gateway play in this communication?

Options :

A : The default gateway blocks packets that are not explicitly permitted by a local firewall rule.

B : The default gateway assigns a new IP address to the computer for external communication.

C : The default gateway forwards packets destined for IP addresses outside the local subnet.

D : The default gateway resolves the domain name of the web server into its IP address.

Answer: C

Question 5

When deploying threat detection systems in a corporate network, which of the following capabilities are most commonly associated with identifying and mitigating threats? (Choose two)

Options :

A : Packet forwarding

B : Behavioral anomaly detection

C : Network Address Translation (NAT)

D : Static IP allocation

E : Signature-based detection

Answer: B,E