CS0-002 Free Practice Test

The security team at a large corporation is helping the payment-processing team to prepare for a regulatory compliance audit and meet the following objectives:
Reduce the number of potential findings by the auditors.
Limit the scope of the audit to only devices used by the payment-processing team for activities directly impacted by the regulations.
Prevent the external-facing web infrastructure used by other teams from coming into scope.
Limit the amount of exposure the company will face if the systems used by the payment-processing
team are compromised.
Which of the following would be the MOST effective way for the security team to meet these objectives?

1. A. Limit the permissions to prevent other employees from accessing data owned by the business unit.
2. B. Segment the servers and systems used by the business unit from the rest of the network.
3. C. Deploy patches to all servers and workstations across the entire organization.
4. D. Implement full-disk encryption on the laptops used by employees of the payment-processing team.

Correct Answer: B

You are a cybersecurity analyst tasked with interpreting scan data from Company A's servers. You must verify the requirements are being met for all of the servers and recommend changes if you find they are not.
The company's hardening guidelines indicate the following:
• TLS 1.2 is the only version of TLS running.
• Apache 2.4.18 or greater should be used.
• Only default ports should be used. INSTRUCTIONS
Using the supplied data, record the status of compliance with the company's guidelines for each server.
The question contains two parts: make sure you complete Part 1 and Part 2. Make recommendations for issues based ONLY on the hardening guidelines provided.





Solution:
Part 1 Answer
Check on the following:
AppServ1 is only using TLS.1.2
AppServ4 is only using TLS.1.2
AppServ1 is using Apache 2.4.18 or greater
AppServ3 is using Apache 2.4.18 or greater
AppServ4 is using Apache 2.4.18 or greater
Part 2 Answer
Recommendation:
Recommendation is to disable TLS v1.1 on AppServ2 and AppServ3. Also upgrade AppServ2 Apache to version 2.4.48 from its current version of 2.3.48


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

An organization needs to limit its exposure to accidental disclosure when employees send emails that contain personal information to recipients outside the company Which of the following technical controls would BEST accomplish this goal?

1. A. DLP
2. B. Encryption
3. C. Data masking
4. D. SPF

Correct Answer: A

An analyst is working with a network engineer to resolve a vulnerability that was found in a piece of legacy hardware, which is critical to the operation of the organization's production line. The legacy hardware does not have third-party support, and the OEM manufacturer of the controller is no longer in operation. The analyst documents the activities and verifies these actions prevent remote exploitation of the vulnerability.
Which of the following would be the MOST appropriate to remediate the controller?

1. A. Segment the network to constrain access to administrative interfaces.
2. B. Replace the equipment that has third-party support.
3. C. Remove the legacy hardware from the network.
4. D. Install an IDS on the network between the switch and the legacy equipment.

Correct Answer: A

An analyst identifies multiple instances of node-to-node communication between several endpoints within the 10.200.2.0/24 network and a user machine at the IP address 10.200.2.5. This user machine at the IP address 10.200.2.5 is also identified as initiating outbound communication during atypical business hours with several IP addresses that have recently appeared on threat feeds.
Which of the following can be inferred from this activity?

1. A. 10.200.2.0/24 is infected with ransomware.
2. B. 10.200.2.0/24 is not routable address space.
3. C. 10.200.2.5 is a rogue endpoint.
4. D. 10.200.2.5 is exfiltrating data.

Correct Answer: D