WGU C795 Cybersecurity Management II - Tactical TESTS COMPILATION BUNDLE

Question 1 :Which of the following best describes an implicit deny principle? CORRECT ANSWERS: All actions that are not expressly allowed are denied. What is the intent of least privilege? CORRECT ANSWERS: Enforce the most restrictive rights required by users to complete assigned tasks. Ques...

Question 1 :A security technician reports to you that a file server is experiencing unscheduled initial program loads (IPLs). Which statement BEST explains this problem? CORRECT ANSWERS: The system is rebooting. Because of the value of your company's data, your company has asked you to ensure d...

What is a vulnerability? CORRECT ANSWERS: a weakness in an information system, system security procedures, internal controls, or implementation that could be exploited or triggered by a threat source. What is a penetration test? CORRECT ANSWERS: a simulated cyber attack against your systems or ...

____________ subjects are granted only the privileges necessary to perform assigned work tasks and no more. Keep in mind that privilege in this context includes both permissions to data and rights to perform tasks on systems. CORRECT ANSWERS: The principle of least privilege states that ________...

As an IT security professional, you have just been hired by a multisite automotive dealership to protect and manage its computer network. What is your first task in establishing a secure defense system for the company?This task contains the radio buttons and checkboxes for options. The shortcut keys...

A technician notifies her supervisor that the nightly backup of a critical system failed during the previous night's run. Because the system is critical to the organization, the technician raised the issue in order to make management aware of the missing backup. The technician is looking for guidan...

A company's main asset is a physical working prototype stored in the research and development department. The prototype is not currently connected to the company's network. Which privileged user activity should be monitored? a. Accessing camera logs b. Adding accounts to the administrator ...

Security Tests CORRECT ANSWERS: Security tests verify that a control is functioning properly. These tests include automated scans, tool-assisted penetration tests, and manual attempts to undermine security. Security testing should take place on a regular schedule, with attention paid to each of the...

OOM (Object-oriented modeling): CORRECT ANSWERS: It is heavily used by both OOA and OOD activities in modern software engineering. ISO/IEC 20000 Family ISO27001 - ISO27002 - ISO27005 - ISO - ISO - CORRECT ANSWERS: ISO27001 - Requirements ISO27002 - Code of Practice ISO27005 - Risk M...

Common Vulnerabilities and Exposures (CVE) CORRECT ANSWERS: Provides a naming system for describing security vulnerabilities. Common Vulnerability Scoring System (CVSS) CORRECT ANSWERS: provides a standardized scoring system for describing the severity of security vulnerabilities. Common Con...

A company's main asset is a physical working prototype stored in the research and development department. The prototype is not currently connected to the company's network. Which privileged user activity should be monitored? a. Accessing camera logs b. Adding accounts to the administrator ...