Get Full Version of the Exam
http://www.EnsurePass.com/SY0-501.html
Question No.11
Which of the following BEST describes an important security advantage yielded by implementing vendor diversity?
-
Sustainability
-
Homogeneity
-
Resiliency
-
Configurability
Correct Answer: C
Question No.12
An organization#39;s internal auditor discovers that large sums of money have recently been paid to a vendor that management does not recognize. The IT security department is asked to investigate the organizations the organization#39;s ERP system to determine how the accounts payable module has been used to make these vendor payments.
The IT security department finds the following security configuration for the accounts payable module:
Which of the following changes to the security configuration of the accounts payable module would BEST mitigate the risk?
A.
B.
C.
D.
Correct Answer: A
Question No.13
After a user reports slow computer performance, a system administrator detects a suspicious file, which was installed as part of a freeware software package. The systems administrator reviews
the output below:
Based on the above information, which of the following types of malware was installed on the user#39;s computer?
-
RAT
-
Keylogger
-
Spyware
-
Worm
-
Bot
Correct Answer: A
Question No.14
Users report the following message appears when browsing to the company#39;s secure site: This website cannot be trusted.
Which of the following actions should a security analyst take to resolve these messages? (Select two.)
-
Verify the certificate has not expired on the server.
-
Ensure the certificate has a .pfx extension on the server.
-
Update the root certificate into the client computer certificate store.
-
Install the updated private key on the web server.
-
Have users clear their browsing history and relaunch the session.
Correct Answer: AC
Question No.15
CORRECT TEXT
You have just received some room and WiFi access control recommendations from a security consulting company. Click on each building to bring up available security controls.
Please implement the following requirements:
The Chief Executive Officer#39;s (CEO) office had multiple redundant security measures installed on the door to the office. Remove unnecessary redundancies to deploy three- factor authentication, while retaining the expensive iris render.
The Public Cafe has wireless available to customers. You need to secure the WAP with WPA and place a passphrase on the customer receipts.
In the Data Center you need to include authentication from the quot;something you knowquot; category and take advantage of the existing smartcard reader on the door.
In the Help Desk Office you need to require single factor authentication through the use of physical tokens given to guests by the receptionist.
The PII Office has redundant security measures in place. You need to eliminate the redundancy
while maintaining three-factor authentication and retaining the more expensive controls.
Instructions:
The original security controls for each office can be reset at anytime by selecting the Reset button. Once you have met the above requirements for each office, select the Save button.
When you have completed the entire simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.
Correct Answer: Please refer to the Explanation part to solve this sim.
Explanation:
Use the following to get this sim work as:
Question No.16
DRAG DROP
You have been tasked with designing a security plan for your company. Drag and drop the appropriate security controls on the floor plan.
Instructions:
All objects must be used and all place holders must be filled. Order does not matter. When you have completed the simul- ation, please select the Done button to submit.
Correct Answer:
Question No.17
A company is developing a new secure technology and requires computers being used for development to be isolated. Which of the following should be implemented to provide the MOST secure environment?
-
A perimeter firewall and IDS
-
An air gapped computer network
-
A honeypot residing in a DMZ
-
An ad hoc network with NAT
-
A bastion host
Correct Answer: B
Question No.18
An incident responder receives a call from a user who reports a computer is exhibiting symptoms consistent with a malware infection. Which of the following steps should the responder perform NEXT?
-
Capture and document necessary information to assist in the response.
-
Request the user capture and provide a screenshot or recording of the symptoms.
-
Use a remote desktop client to collect and analyze the malware in real time.
-
Ask the user to back up files for later recovery.
Correct Answer: A
Question No.19
Two users need to send each other emails over unsecured channels. The system should support the principle of non-repudiation. Which of the following should be used to sign the user#39;s certificates?
-
RA
-
CA
-
CRL
-
CSR
Correct Answer: B
Question No.20
A security administrator is developing controls for creating audit trails and tracking if a PHI data breach is to occur. The administrator has been given the following requirements:
All access must be correlated to a user account.
All user accounts must be assigned to a single individual. User access to the PHI data must be recorded.
Anomalies in PHI data access must be reported. Logs and records cannot be deleted or modified.
Which of the following should the administrator implement to meet the above requirements? (Select three.)
-
Eliminate shared accounts.
-
Create a standard naming convention for accounts.
-
Implement usage auditing and review.
-
Enable account lockout thresholds.
-
Copy logs in real time to a secured WORM drive.
-
Implement time-of-day restrictions.
-
Perform regular permission audits and reviews.
Correct Answer: ACG
Get Full Version of SY0-501 Dumps