Chapter 9 | Cybersecurity 2
9.8 Which of the following could be an example of a malicious insider attack? A) A user uses the built-in microphone to record conversations. B) A user has lost a company-owned device. C) A user's device has become infected with malware. D) A user has not implemented appropriate security settings.
A) A user uses the built-in microphone to record conversations.
9.8 Which of the following defines an acceptable use agreement? A) An agreement that identifies employees' rights to use company property, such as internet access and computer equipment, for personal use. B) A legal contract between the organization and the employee that specifies that the employee is not to disclose the organization's confidential information. C) An agreement that prohibits an employee from working for a competing organization for a specified period of time after he or she leaves the organization. D) An agreement that outlines the organization's monitoring activities.
A) An agreement that identifies employees' rights to use company property, such as internet access and computer equipment, for personal use.
9.6 Your organization recently purchased 20 Android tablets for use by the organization's management team. To increase the security of these devices, you want to ensure that only specific apps can be installed. Which of the following would you implement? A) App whitelisting B) Credential Manager C) App blacklisting D) Application Control
A) App whitelisting
9.3 Which SDN layer would a load balancer that stops and starts VMs as resource use increases reside on? A) Application B) Session C) Physical Control
A) Application
9.5 Which type of firewall operates at Layer 7 of the OSI model? A) Application layer B) Packet-filtering C) Circuit-level gateway D) Stateful
A) Application layer
9.9 Which of the following is an open-source hardware and software company that designs and manufactures single-board microcontrollers as well as kits to build digital devices? A) Arduino B) Amazon C) Raspberry Pi D) Microsoft
A) Arduino
9.2 Which of the following provides the network virtualization solution called XenServer? A) Citrix B) VMWare C) Cisco D) Microsoft
A) Citrix
9.5 Which of the following can provide the most specific protection and monitoring capabilities? A) Cloud-access security broker B) Cloud native controls C) Cloud-based firewall D) Secure web gateway
A) Cloud-access security broker
9.5 Which of the following is a network device that is deployed in the cloud to protect against unwanted access to a private network? A) Cloud-based firewall B) Cloud-access security broker C) Cloud native controls D) Virtual area network
A) Cloud-based firewall
9.3 Which of the following BEST describes the Application SDN layer? A) Communicates with the Control layer through the northbound interface. B) Communicates with the Control layer through the southbound interface. C) Receives its requests and then provides configuration and instructions. D) Is software that is able to inventory hardware components in the network.
A) Communicates with the Control layer through the northbound interface.
9.4 A group of small local businesses have joined together to share access to a cloud-based payment system. Which type of cloud is MOST likely being implemented? A) Community B) Hybrid C) Private D) Public
A) Community
9.1 Which of the following are advantages of virtualization? (Select two.) A) Easy migration of systems to different hardware B) Improved host-based attack detection C) Redundancy of hardware components for fault tolerance D) Reduced utilization of hardware resources E) Centralized administration
A) Easy migration of systems to different hardware E) Centralized administration
9.1 Which of the following is an exploit in which malware allows the virtual OS to interact directly with the hypervisor? A) Escape B) Load balancing C) Bottleneck D) Jump
A) Escape
9.2 Which of the following is a network virtualization solution provided by Microsoft? A) Hyper-V B) VirtualBox C) VMware D) Citrix
A) Hyper-V
9.6 Your organization recently purchased 20 Android tablets for use by the organization's management team. You are using a Windows domain. Which of the following should you use to push security settings to the devices? A) Intune B) Group Policy C) Credential Manager D) Application Control
A) Intune
9.6 Which of the following is the recommend Intune configuration? A) Intune Standalone B) Hybrid MDM C) Account portal D) Company portal
A) Intune Standalone
9.1 Which of the following is a technique that disperses a workload between two or more computers or resources to achieve optimal resource utilization, throughput, or response time? A) Load balancing B) Bottleneck C) Virtualization D) Hypervisor
A) Load balancing
9.6 Which of the following is a solution that pushes security policies directly to mobile devices over a network connection? A) Mobile device management (MDM) B) Credential Manager C) Group Policy D) Application Control
A) Mobile device management (MDM)
9.8 The IT manager has tasked you with implementing a solution that ensures that mobile devices are up to date, have anti-malware installed, and have the latest definition updates before being allowed to connect to the network. Which of the following should you implement? A) NAC B) MDM C) BYOD D) VDI
A) NAC
9.4 Google Cloud, Amazon Web Services (AWS), and Microsoft Azure are some of the most widely used cloud storage solutions for enterprises. Which of the following factors prompt companies to take advantage of cloud storage? (Select two.) A) Need to bring costs down B) Need for Software as a Service (SaaS) for managing enterprise applications C) Need for Platform as a Service (PaaS) for developing applications D) Need for a storage provider to manage access control E) Growing demand for storage
A) Need to bring costs down E) Growing demand for storage
9.8 Which of the following BEST describes a virtual desktop infrastructure (VDI)? A) Provides enhanced security and better data protection because most of the data processing is provided by servers in the data center rather than on the local device. B) Specifies where and when mobile devices can be possessed within the organization. For example, the possession of mobile devices may be prohibited in high-security areas. C) Gives businesses significant control over device security while allowing employees to use their devices to access both corporate and personal data. D) Defines which kinds of data are allowed or which kinds of data are prohibited on personally owned devices brought into the workplace.
A) Provides enhanced security and better data protection because most of the data processing is provided by servers in the data center rather than on the local device.
9.7 Which of the following app deployment and update methods allows updates to be uploaded onto Intune where they can be pushed out to users within 24 hours? A) Remote management B) Self-service portal C) App catalog D) BYOD
A) Remote management
9.6 A smartphone was lost at the airport. There is no way to recover the device. Which of the following ensures data confidentiality on the device? A) Remote wipe B) TPM C) GPS D) Screen lock
A) Remote wipe
9.4 Which of the following cloud computing solutions delivers software applications to a client either over the internet or on a local area network? A) SaaS B) DaaS C) IaaS D) PaaS
A) SaaS
9.6 Which of the following mobile device security considerations disables the ability to use the device after a short period of inactivity? A) Screen lock B) TPM C) Remote wipe D) GPS
A) Screen lock
9.5 Which of the following is a network security service that filters malware from user-side internet connections using different techniques? A) Secure web gateway B) Virtual area network C) Cloud-access security broker D) Cloud-based firewall
A) Secure web gateway
9.3 Network engineers have the option of using software to configure and control the network rather than relying on individual static configuration files that are located on each network device. Which of the following is a relatively new technology that allows network and security professionals to use software to manage, control, and make changes to a network? A) Software-defined networking (SDN) B) Infrastructure software networking C) Load balancing software D) Control layer networking
A) Software-defined networking (SDN)
9.8 If a user's BYOD device (such as a tablet or phone) is infected with malware, that malware can be spread if that user connects to your organization's network. One way to prevent this event is to use a Network Access Control (NAC) system. How does an NAC protect your network from being infected by a BYOD device? A) The NAC remediates devices before allowing them to connect to your network. B) The NAC notifies users that personally owned devices are subject to random searches if brought on site. C) The NAC forces BYOD devices to connect to a guest network that is isolated from your production network. D) The NAC specifies which apps can be used while the BYOD device is connected to the organization's network.
A) The NAC remediates devices before allowing them to connect to your network.
9.1 Which type of hypervisor runs as an application on the host machine? A) Type 2 B) Type 3 C) Type 4 D) Type 1
A) Type 2
9.4 Which of the following are true concerning virtual desktop infrastructure (VDI)? (Select two.) A) User desktop environments are centrally hosted on servers instead of on individual desktop systems. B) In the event of a widespread malware infection, the administrator can quickly reimage all user desktops on a few central servers. C) User desktop environments are provided by individual desktop systems instead of by remote servers. D) Roaming profiles must be configured to allow mobile users to keep their same desktop environment across systems. E) In the event of a widespread malware infection, the administrator can reimage user desktops by pushing an image out to each user desktop system over the network.
A) User desktop environments are centrally hosted on servers instead of on individual desktop systems. B) In the event of a widespread malware infection, the administrator can quickly reimage all user desktops on a few central servers.
9.2 Which of the following is used as a secure tunnel to connect two networks? A) VPN B) VFA C) VAN D) VLAN
A) VPN
9.9 You manage the information systems for a large manufacturing firm. Supervisory control and data acquisition (SCADA) devices are used on the manufacturing floor to manage your organization's automated factory equipment. The SCADA devices use embedded smart technology, allowing them to be managed using a mobile device app over an internet connection. You are concerned about the security of these devices. What can you do to increase their security posture? (Select two.) A) Verify that your network's existing security infrastructure is working properly. B) Enroll each device in a mobile device management system. C) Install a network monitoring agent on each device. D) Install anti-malware software on each device. E) Install the latest firmware updates from the device manufacturer.
A) Verify that your network's existing security infrastructure is working properly. E) Install the latest firmware updates from the device manufacturer.
9.2 Which of the following devices facilitates communication between different virtual machines by checking data packets before moving them to a destination? A) Virtual switch B) Virtual firewall C) Hypervisor D) Virtual router
A) Virtual switch
9.7 What is the minimum number of users needed in a Windows Enterprise agreement for Intune to be included? A) 1,000 B) 500 C) No minimum D) 100
B) 500
9.1 Which of the following are disadvantages of server virtualization? A) It increases hardware costs. B) A compromised host system might affect multiple servers. C) A compromised guest system might affect multiple servers. D) Systems are isolated from each other and cannot interact with other systems.
B) A compromised host system might affect multiple servers.
9.7 Which of the following is the first phase of the Microsoft Intune application life cycle? A) Configure B) Add C) Protect D) Deploy
B) Add
9.3 Which of the following BEST describes the Physical SDN layer? A) Gives new life to old networking hardware. B) Also known as the Infrastructure layer. C) Receives its requests from the Application layer. D) Sometimes called northbound APIs.
B) Also known as the Infrastructure layer.
9.7 Which of the following app deployment and update methods can be configured to make available to specific users and groups only the apps that they have rights to access? A) Remote management B) App catalog C) Self-service portal D) BYOD
B) App catalog
9.5 What is the on-premises, cloud-based software tool that sits between an organization and a cloud service provider called? A) Cloud-based firewall B) Cloud-access security broker C) Secure web gateway D) Cloud native controls
B) Cloud-access security broker
9.7 In which phase of the Microsoft Intune application life cycle would you assign an app to users and/or devices you manage and monitor them on the Azure portal? A) Configure B) Deploy C) Add D) Protect
B) Deploy
9.9 Which Amazon device can be used to control smart devices (such as lights) throughout a home using voice commands? A) Siri B) Echo C) Cortana D) Home
B) Echo
9.9 You manage information systems for a large co-location data center. Networked environmental controls are used to manage the temperature within the data center. These controls use embedded smart technology that allows them to be managed over an internet connection using a mobile device app. You are concerned about the security of these devices. What can you do to increase their security posture? (Select two.) A) Enroll each device in a mobile device management (MDM) system. B) Install the latest firmware updates from the device manufacturer. C) Rely on the device manufacturer to maintain device security with automated firmware updates. D) Install anti-malware software on each device. E) Verify that your network's existing security infrastructure is working properly.
B) Install the latest firmware updates from the device manufacturer. E) Verify that your network's existing security infrastructure is working properly.
9.5 Which of the following tools allows the user to set security rules for an instance of an application that interacts with one organization and different security rules for an instance of the application when interacting with another organization? A) Replication B) Instance awareness C) Encryption D) Integration
B) Instance awareness
9.5 What is the system that connects application repositories, systems, and IT environments in a way that allows access and exchange of data over a network by multiple devices and locations called? A) Encryption B) Integration C) Instance awareness D) High availability
B) Integration
9.3 Which of the following is an advantage of software-defined networking (SDN)? A) Standards are still being developed B) More granular control C) Is currently a new technology D) Lack of vendor support
B) More granular control
9.3 Which of the following does the Application layer use to communicate with the Control layer? A) These layers do not communicate B) Northbound APIs C) Southbound APIs D) Controllers
B) Northbound APIs
9.4 Which of the following BEST describes the Platform as a Service (PaaS) cloud computing service model? A) PaaS stores and provides data from a centralized location without the need for local collection and storage. B) PaaS delivers everything a developer needs to build an application on the cloud infrastructure. C) PaaS delivers infrastructure to the client, such as processing, storage, networks, and virtualized environments. D) PaaS delivers software applications to the client either over the internet or on a local area network (LAN).
B) PaaS delivers everything a developer needs to build an application on the cloud infrastructure.
9.1 You have a development machine that contains sensitive information relative to your business. You are concerned that spyware and malware might be installed while users browse websites, which could compromise your system or pose a confidentiality risk. Which of the following actions would BEST protect your system? A) Change the security level for the internet zone to High. B) Run the browser within a virtual environment. C) Configure the browser to block all cookies and pop-ups. D) Run the browser in protected mode.
B) Run the browser within a virtual environment.
9.4 You are the security administrator for your organization. You have implemented a cloud service to provide features such as authentication, anti-malware, intrusion detection, and penetration testing. Which cloud service have you most likely implemented? A) PaaS B) SECaaS C) SaaS D) IaaS
B) SECaaS
9.1 What is isolating a virtual machine from the physical network to allow testing to be performed without impacting the production environment called? A) Resource pooling B) Sandboxing C) Workload balancing D) Testing
B) Sandboxing
9.4 The IT manager has tasked you with installing new physical machines. These computer systems are barebone systems that simply establish a remote connection to the data center to run the user's virtualized desktop. Which type of deployment model is being used? A) IaaS B) Thin client C) Thick client D) PaaS
B) Thin client
9.4 Which of the following cloud storage access services acts as a gatekeeper, extending an organization's security policies into the cloud storage infrastructure? A) A cloud storage gateway B) A web service application programming interface C) A cloud-access security broker D) A co-located cloud computer service
C) A cloud-access security broker
9.8 Users in the sales department perform many of their daily tasks, such as emailing and creating sales presentations, on company-owned tablets. These tablets contain sensitive information. If one of these tablets is lost or stolen, this information could end up in the wrong hands. The chief information officer wants you to implement a solution that can be used to keep sensitive information from getting into the wrong hands if a device is lost or stolen. Which of the following should you implement? A) A Network Access Control (NAC) solution B) A guest wireless network that is isolated from your organization's production network C) A mobile device management (MDM) infrastructure D) An Acceptable Use Policy (AUP)
C) A mobile device management (MDM) infrastructure
9.2 Which of the following statements about virtual networks is true? (Select two.) A) A virtual network is independent of the configuration and physical hardware of the host operating system. B) Each virtual network must be associated with a single physical network adapter. C) A virtual network is dependent on the configuration and physical hardware of the host operating system. D) Accessing network resources requires that the operating system on the virtual machine be configured on an isolated network. E) Multiple virtual networks can be associated with a single physical network adapter.
C) A virtual network is dependent on the configuration and physical hardware of the host operating system. E) Multiple virtual networks can be associated with a single physical network adapter.
9.8 Which of the following is a policy that defines appropriate and inappropriate usage of company resources, assets, and communications? A) Business impact analysis (BIA) B) Business continuity plan (BCP) C) Acceptable use policy (AUP) D) Disaster recovery plan (DRP)
C) Acceptable use policy (AUP)
9.8 Which device deployment model gives businesses significant control over device security while allowing employees to use their devices to access both corporate and personal data? A) VDI B) CYOD C) COPE D) BYOD
C) COPE
9.4 Cloud storage is a virtual service, so the infrastructure is the responsibility of the storage provider. Access control should be set as a local file system would be, with no need for the provider to have access to the stored data. You are implementing the following measures to secure your cloud storage: - Verify that security controls are the same as in a physical data center. - Use data classification policies. - Assign information into categories that determine storage, handling, and access requirements. - Assign information classification based on information sensitivity and criticality. Which of the following is another security measure you can implement? A) Dispose of data when it is no longer needed by using specialized tools. B) Create versioned copies of your cloud data. C) Configure redundancy and distribution of data. D) Configure distributed resources to act as one in a federated architecture.
C) Configure redundancy and distribution of data.
9.2 You are an application developer. You use a hypervisor with multiple virtual machines installed to test your applications on various operating systems' versions and editions. Currently, all of your virtual machines used for testing are connected to the production network through the hypervisor's network interface. However, you are concerned that the latest application you are working on could adversely impact other network hosts if errors exist in the code. To prevent issues, you decide to isolate the virtual machines from the production network. However, they still need to be able to communicate directly with each other. What should you do? (Select two. Both responses are part of the complete solution.) A) Disable the switch port the hypervisor's network interface is connected to. B) Create MAC address filters on the network switch that block each virtual machine's virtual network interfaces. C) Create a new virtual switch configured for host-only (internal) networking. D) Create a new virtual switch configured for bridged (external) networking. E) Disconnect the network cable from the hypervisor's network interface. F) Connect the virtual network interfaces in the virtual machines to the virtual switch.
C) Create a new virtual switch configured for host-only (internal) networking. F) Connect the virtual network interfaces in the virtual machines to the virtual switch.
9.9 Why do attackers prefer to conduct distributed network attacks in static environments? (Select two.) A) It is difficult to update the virus definitions used to protect these devices. B) These devices are typically installed in the DMZ that resides outside of an organization's perimeter firewall. C) Devices are typically more difficult to monitor than traditional network devices. D) Smart device vendors tend to proactively protect their products against security threats. E) Devices tend to employ much weaker security than traditional network devices.
C) Devices are typically more difficult to monitor than traditional network devices. E) Devices tend to employ much weaker security than traditional network devices.
9.6 Your organization recently purchased 18 iPad tablets for use by the organization's management team. These devices have iOS pre-installed on them. To increase the security of these devices, you want to apply a default set of security-related configuration settings. What is the BEST approach to take to accomplish this? (Select two. Each option is part of a complete solution.) A) Configure and distribute security settings in a configuration profile. B) Join the tablets to a Windows domain. C) Enroll the devices in a mobile device management (MDM) system. D) Configure and apply security policy settings in a mobile device management (MDM) system. E) Configure security settings in a Group Policy Object. F) Require users to install the configuration profile.
C) Enroll the devices in a mobile device management (MDM) system. D) Configure and apply security policy settings in a mobile device management (MDM) system.
9.8 Your organization allows employees to bring their own devices into work, but management is concerned that a malicious internal user could use a mobile device to conduct an insider attack. Which of the following should be implemented to help mitigate this threat? A) Implement a guest wireless network that is isolated from your organization's production network. B) Implement a Network Access Control (NAC) solution. C) Implement an AUP that specifies where and when mobile devices can be possessed within the organization. D) Implement an AUP that specifies which apps are allowed for use with organizational data.
C) Implement an AUP that specifies where and when mobile devices can be possessed within the organization.
9.9 You notice that a growing number of devices, such as environmental control systems and wearable devices, are connecting to your network. These devices, known as smart devices, are sending and receiving data via wireless network connections. Which of the following labels applies to this growing ecosystem of smart devices? A) Internet of smart devices B) Dynamic environment C) Internet of Things (IoT) D) The smartnet
C) Internet of Things (IoT)
9.7 Mobile application management (MAM) provides the ability to do which of the following? A) Manage mobile devices. B) Comply with security policies. C) Remotely install and uninstall apps. D) Control data access.
C) Remotely install and uninstall apps.
9.5 Which of the following methods can cloud providers implement to provide high availability? A) Integration B) Encryption C) Replication D) Instance awareness
C) Replication
9.3 Which of the following is a disadvantage of software defined networking (SDN)? A) SDN gathers network information and statistics. B) SDN creates centralized management. C) SDN standards are still being developed. D) SDN facilitates communication between hardware from different vendors.
C) SDN standards are still being developed.
9.9 Which of the following do Raspberry Pi systems make use of? A) FPGA B) SCADA C) SoC D) RTOS
C) SoC
9.3 Which APIs do individual networking devices use to communicate with the control plane from the Physical layer? A) None B) Northbound C) Southbound D) Northbound and Southbound
C) Southbound
9.3 Software defined networking (SDN) uses a controller to manage devices. The controller is able to inventory hardware components on the network, gather network statistics, make routing decisions based on gathered data, and facilitate communication between devices from different vendors. It can also be used to make widespread configuration changes on just one device. Which of the following best describes an SDN controller? A) The SDN controller is hardware. B) The SDN controller is a virtual networking device. C) The SDN controller is software. D) The SDN controller is a networking protocol.
C) The SDN controller is software.
9.9 Which of the following lets you make phone calls over a packet-switched network? A) FPGA B) SCADA C) VoIP D) RTOS
C) VoIP
9.1 Which load balancing method distributes a workload across multiple computers? A) Resource pooling B) Virtualization C) Workload balancing D) Bottleneck
C) Workload balancing
9.8 Users in the sales department perform many of their daily tasks, such as emailing and creating sales presentations, on their personal tablets. The chief information officer worries that one of these users might also use their tablet to steal sensitive information from the organization's network. Your job is to implement a solution that prevents insiders from accessing sensitive information stored on the organization's network from their personal devices while still giving them access to the internet. Which of the following should you implement? A) A mobile device management (MDM) infrastructure B) An Acceptable Use Policy (AUP) C) A Network Access Control (NAC) solution D) A guest wireless network that is isolated from your organization's production network
D) A guest wireless network that is isolated from your organization's production network
9.6 Which of the following Intune portals is used by end users to manage their own account and enroll devices? A) Account portal B) Add Intune Users C) Admin portal D) Company portal
D) Company portal
9.7 Which of the following mobile device management (MDM) solutions is hardware-agnostic and supports many different brands of mobile devices? A) UEM B) MAM C) MDM D) EMM
D) EMM
9.1 Which of the following devices is computer software, firmware, or hardware that creates and runs virtual machines? A) Virtual firewall B) Virtual switch C) Virtual router D) Hypervisor
D) Hypervisor
9.6 The IT manager has tasked you with configuring Intune. You have enrolled the devices and now need to set up the Intune policies. Where would you go to set up the Intune policies? A) In the Company portal, select Management > Policy > Add Policy. B) In the Company portal, select Policy > Add Policy. C) In the Admin portal, select Management > Policy > Add Policy. D) In the Admin portal, select Policy > Add Policy.
D) In the Admin portal, select Policy > Add Policy.
9.5 Which type of firewall protects against packets coming from certain IP addresses? A) Stateful B) Circuit-level C) Application layer D) Packet-filtering
D) Packet-filtering
9.1 Which of the following is an advantage of a virtual browser? A) Prevents adware and spyware that monitor your internet activity B) Filters internet content based on ratings C) Prevents phishing and drive-by downloads D) Protects the host operating system from malicious downloads
D) Protects the host operating system from malicious downloads
9.9 Which of the following serves real-time applications without buffer delays? A) SoC B) SCADA C) FPGA D) RTOS
D) RTOS
9.7 Which of the following app deployment and update methods allows an administrator to remove apps and clear all data from a device without affecting the device itself? A) Self-service portal B) BYOD C) App catalog D) Remote management
D) Remote management
9.9 Which of the following devices are special computer systems that gather, analyze, and manage automated factory equipment? A) UAV B) MFD C) SoC D) SCADA
D) SCADA
9.7 Mobile device management (MDM) provides the ability to do which of the following? A) Remotely install apps. B) Control data access. C) Update apps as needed. D) Track the device.
D) Track the device.
9.7 Which of the following mobile device management (MDM) solutions allows an organization to manage all devices, including printers, workstations, and even IoT devices? A) MAM B) EMM C) MDM D) UEM
D) UEM
9.2 What is the limit of virtual machines that can be connected to a virtual network? A) 65,534 B) 16,777,214 C) 54 D) Unlimited
D) Unlimited
9.5 Which formula is used to determine a cloud provider's availability percentage? A) Downtime/downtime + uptime B) Uptime/downtime + uptime C) Downtime/uptime + downtime D) Uptime/uptime + downtime
D) Uptime/uptime + downtime
9.2 What is a virtual LAN that runs on top of a physical LAN called? A) VLAN B) VFA C) VMM D) VAN
D) VAN
9.2 Which of the following virtual devices provides packet filtering and monitoring? A) VLAN B) vSwitch C) VMM D) VFA
D) VFA
9.2 Which of the following is an example of protocol-based network virtualization? A) VMM B) vSwitch C) VFA D) VLAN
D) VLAN