Correct Answer:

Escaping is correct. Escaping is a secure coding technique that ensures that any system commands are not processed and executed as actual commands; instead, they are only recognized as text.

Incorrect Answers:

Fuzzing is incorrect. Fuzzing is used to test input validation.

Cross-site scripting is incorrect. Cross-site scripting (XSS) is a type of application attack.

Transitive access is incorrect. Transitive access is a security issue that allows user access to pass through unexpectedly from one software component to another without proper authorization or access permissions.

Correct Answer:

NAC is correct. Using network access control (NAC), you can define a minimum set of parameters that clients must adhere to before they can connect to your network. NAC typically installs a user agent on the client that analyzes the system and compares its configuration to your policies.

Incorrect Answers:

NAT is incorrect. Network address translation (NAT) is used to share external IP addresses among several internal IP addresses.

Screened subnet is incorrect. A screened subnet can host important servers on a secure network behind the firewall, but does not offer client policies.

VLAN is incorrect. Virtual local area networks (VLANs) split networks into logical subnetworks, but do not offer any security access policies for minimum client configuration.

Correct Answer:

Security device with NAT capabilities is correct. Using network address translation (NAT) on a firewall device, you can share an external address with several internal IP addresses of devices protected by the firewall.

Incorrect Answers:

Router is incorrect. A router still requires a NAT service to perform address translation.

Firewall with no services running is incorrect. A firewall DMZ can host important servers on a secure network behind the firewall, but still requires a NAT service to perform address translation.

DHCP server is incorrect. A Dynamic Host Configuration Protocol (DHCP) server is used to allocate internal IP addresses.

Correct Answer:

Identity is correct. The three roles within a Security Assertions Markup Language (SAML) implementation are the identity, the identity provider, and the service provider.

Incorrect Answers:

Authentication provider, service validation, and validation authority are incorrect. These are not roles within a SAML implementation.

Correct Answer:

Acceptable use policy is correct. An acceptable use policy (AUP) is a set of established guidelines for the appropriate use of computer networks within an organization.

Incorrect Answers:

Due care and due diligence is incorrect. Due care and due diligence are the standards the company must adhere to when implementing and enforcing company-wide security policies.

Service-level agreement is incorrect. A service-level agreement (SLA) is an agreement between a service provider and its client.

Access control policy is incorrect. An access control policy is geared toward preventing unauthorized access. Examples of such policies include least privilege, job rotation, and separation of duties.

Correct Answer:

A new key pair and new certificate need to be generated is correct. New key pairs and a certificate need to be generated because the certificate can’t be renewed after it has been revoked.

Incorrect Answers:

Contact the CA for to appeal the revocation is incorrect. You do not appeal a revoked certificate; you generate a new one.

Continue to use the certificate until you get a renewal is incorrect. You cannot use the certificate after it has been revoked.

Use a self-signed certificate is incorrect. A self-signed certificate can be used but will generate errors in the client web browser and is not a replacement for a certificate from a trusted certificate authority.

Correct Answer:

MITRE ATT&CK is correct. MITRE created the ATT&CK framework to help catalog emerging tactics, techniques, and procedures (TTPs) being used within attacks globally.

Incorrect Answers:

The Diamond Model of Intrusion Analysis is incorrect. The Diamond Model categorizes the relationships and characteristics of an attack’s four main components: the model describes that an adversary deploys a capability over some infrastructure against a victim.

NIST Cybersecurity Framework (CSF) is incorrect. The NIST Cybersecurity Framework (CSF) is a controls framework originally designed for organizations that are part of the U.S. Critical Infrastructure. CSF contains a set of controls that are sorted into five categories to reduce risk and help organizations respond more rapidly when incidents do occur.

Cyber Kill Chain is incorrect. The Cyber Kill Chain was developed for use by the major defense contractor, Lockheed Martin, with the end state of portraying how attackers step through their actions to reach their final goal.

Correct Answer:

Data assessor is correct. The General Data Protection Regulation (GDPR) does not designate a data assessor privacy role.

Incorrect Answers:

Data controller, Data processor, and Data protection officer are incorrect. These are all valid privacy roles within the GDPR.

Correct Answer:

Virus attack that corrupts files on a server is correct. If a virus infects one of your servers that stores customer data, the files can be corrupted if you do not have a proper backup of the data.

Incorrect Answers:

Failed hard drive on a RAID system is incorrect. If a hard drive fails on a RAID system, the system’s native redundancy still preserves the integrity of data and the hard drive can be replaced.

Theft of a network switch and hacking attempt on your firewall are incorrect. A hacking attempt or theft attempt on a network device will not harm stored customer data on a server.

Correct Answer:

Test your plan is correct. Your disaster recovery plan (DRP) must be tested to ensure that it properly meets your business continuity objectives during a real-life scenario. After testing your plan, you can revise it based on your testing results.

Incorrect Answers:

Store the plan in a locked safe, create backup copies of the plan and store them offsite, and have the plan approved by the CEO of the company are incorrect. The plan needs to be tested before you securely store it, create backup copies of it, or have final CEO approval of it.