최신CompTIA Cybersecurity Analyst (CySA+) Certification - CS0-002무료샘플문제
문제1
A company's application development has been outsourced to a third-party development team. Based on the SLA.
The development team must follow industry best practices for secure coding.
Which of the following is the BEST way to verify this agreement?
A company's application development has been outsourced to a third-party development team. Based on the SLA.
The development team must follow industry best practices for secure coding.
Which of the following is the BEST way to verify this agreement?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제2
A security analyst observes a large amount of scanning activity coming from an IP address outside the organization's environment. Which of the following should the analyst do to block this activity?
A security analyst observes a large amount of scanning activity coming from an IP address outside the organization's environment. Which of the following should the analyst do to block this activity?
정답: A
설명: (KoreaDumps 회원만 볼 수 있음)
문제3
A security analyst is researching ways to improve the security of a company's email system to mitigate emails that are impersonating company executives. Which of the following would be BEST for the analyst to configure to achieve this objective?
A security analyst is researching ways to improve the security of a company's email system to mitigate emails that are impersonating company executives. Which of the following would be BEST for the analyst to configure to achieve this objective?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제4
A financial organization has offices located globally. Per the organization's policies and procedures, all executives who conduct Business overseas must have their mobile devices checked for malicious software or evidence of tempering upon their return. The information security department oversees the process, and no executive has had a device compromised. The Chief information Security Officer wants to Implement an additional safeguard to protect the organization's dat a. Which of the following controls would work BEST to protect the privacy of the data if a device is stolen?
A financial organization has offices located globally. Per the organization's policies and procedures, all executives who conduct Business overseas must have their mobile devices checked for malicious software or evidence of tempering upon their return. The information security department oversees the process, and no executive has had a device compromised. The Chief information Security Officer wants to Implement an additional safeguard to protect the organization's dat a. Which of the following controls would work BEST to protect the privacy of the data if a device is stolen?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제5
A security technician configured a NIDS to monitor network traffic. Which of the following is a condition in which harmless traffic is classified as a potential network attack?
A security technician configured a NIDS to monitor network traffic. Which of the following is a condition in which harmless traffic is classified as a potential network attack?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제6
Which of the following SCAP standards provides standardization tor measuring and describing the seventy of security-related software flaws?
Which of the following SCAP standards provides standardization tor measuring and describing the seventy of security-related software flaws?
정답: A
설명: (KoreaDumps 회원만 볼 수 있음)
문제7
During a forensic investigation, a security analyst reviews some Session Initiation Protocol packets that came from a suspicious IP address. Law enforcement requires access to a VoIP call that originated from the suspicious IP address. Which of the following should the analyst use to accomplish this task?
During a forensic investigation, a security analyst reviews some Session Initiation Protocol packets that came from a suspicious IP address. Law enforcement requires access to a VoIP call that originated from the suspicious IP address. Which of the following should the analyst use to accomplish this task?
정답: B
설명: (KoreaDumps 회원만 볼 수 있음)
문제8
An IT security analyst has received an email alert regarding vulnerability within the new fleet of vehicles the company recently purchased. Which of the following attack vectors is the vulnerability MOST likely targeting?
An IT security analyst has received an email alert regarding vulnerability within the new fleet of vehicles the company recently purchased. Which of the following attack vectors is the vulnerability MOST likely targeting?
정답: B
설명: (KoreaDumps 회원만 볼 수 있음)
문제9
While going through successful malware cleanup logs, an analyst notices an old worm that has been replicating itself across the company's network Reinfection of the malware can be prevented with a patch; however, most of the affected systems cannot be patched because the patch would make the system unstable. Which of the following should the analyst recommend to best prevent propagation of the malware throughout the network?
While going through successful malware cleanup logs, an analyst notices an old worm that has been replicating itself across the company's network Reinfection of the malware can be prevented with a patch; however, most of the affected systems cannot be patched because the patch would make the system unstable. Which of the following should the analyst recommend to best prevent propagation of the malware throughout the network?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제10
An application has been updated to fix a vulnerability. Which of the following would ensure that previously patched vulnerabilities have not been reintroduced?
An application has been updated to fix a vulnerability. Which of the following would ensure that previously patched vulnerabilities have not been reintroduced?
정답: A
설명: (KoreaDumps 회원만 볼 수 있음)
문제11
During a review of recent network traffic, an analyst realizes the team has seen this same traffic multiple times in the past three weeks, and it resulted in confirmed malware activity The analyst also notes there is no other alert in place for this traffic After resolving the security incident, which of the following would be the BEST action for the analyst to take to increase the chance of detecting this traffic in the future?
During a review of recent network traffic, an analyst realizes the team has seen this same traffic multiple times in the past three weeks, and it resulted in confirmed malware activity The analyst also notes there is no other alert in place for this traffic After resolving the security incident, which of the following would be the BEST action for the analyst to take to increase the chance of detecting this traffic in the future?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제12
An analyst is reviewing the following output as part of an incident:

Which of the Wowing is MOST likely happening?
An analyst is reviewing the following output as part of an incident:

Which of the Wowing is MOST likely happening?
정답: B
설명: (KoreaDumps 회원만 볼 수 있음)
문제13
A security analyst is reviewing WAF alerts and sees the following request:

Which of the following BEST describes the attack?
A security analyst is reviewing WAF alerts and sees the following request:

Which of the following BEST describes the attack?
정답: A
설명: (KoreaDumps 회원만 볼 수 있음)
문제14
An email analysis system notifies a security analyst that the following message was quarantined and requires further review.

Which of the following actions should the security analyst take?
An email analysis system notifies a security analyst that the following message was quarantined and requires further review.

Which of the following actions should the security analyst take?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)