[2023年12月17日] 更新されたGCCC試験PDF問題集にはFast2test合格保証付き [Q21-Q39]

Share

[2023年12月17日] 更新されたGCCC試験PDF問題集にはFast2test合格保証付き

あなたを合格させるGIAC試験にはGCCC試験問題集

質問 # 21
Which CIS Control includes storing system images on a hardened server, scanning production systems for out-of-date software, and using file integrity assessment tools like tripwire?

  • A. Secure Configurations for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers
  • B. Continuous Vulnerability Management
  • C. Inventory of Authorized and Unauthorized Software
  • D. Secure Configurations for Network Devices such as Firewalls, Routers and Switches

正解:A


質問 # 22
Which of the following should be measured and analyzed regularly when implementing the Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers CIS Control?

  • A. What percentage of assets will have their settings enforced and redeployed
  • B. What percentage of systems in the organization are using Network Level Authentication (NLA)
  • C. How long does it take to identify new unauthorized listening ports on the network systems
  • D. How long does it take to remove unauthorized software from the organization's systems
  • E. What percentage of the organization's applications are using sandboxing products

正解:A


質問 # 23
Review the below results of an audit on a server. Based on these results, which document would you recommend be reviewed for training or updates?

  • A. Procedure for setting and resetting user passwords
  • B. Procedure for adjusting network share permissions
  • C. Procedure for authorizing remote server access
  • D. Procedure for modifying file permissions

正解:A


質問 # 24
Which of the following actions would best mitigate against phishing attempts such as the example below?

  • A. Making web filters to prevent accessing Google Docs
  • B. Having employee's complete user awareness training
  • C. Establishing email filters to block no-reply address emails
  • D. Recommending against the use of Google Docs

正解:B


質問 # 25
Which activity increases the risk of a malware infection?

  • A. Editing webpages with a Linux system
  • B. Reading email using a plain text email client
  • C. Charging a smartphone using a computer USB port
  • D. Online banking in Incognito mode

正解:C


質問 # 26
Beta corporation is doing a core evaluation of its centralized logging capabilities. The security staff suspects that the central server has several log files over the past few weeks that have had their contents changed. Given this concern, and the need to keep archived logs for log correction applications, what is the most appropriate next steps?

  • A. Store the files read-only and keep hashes of the logs separately.
  • B. Encrypt the log files with an asymmetric key and remove the cleartext version.
  • C. Keep the files in the log archives synchronized with another location.
  • D. Install a tier one timeserver on the network to keep log devices synchronized.

正解:A


質問 # 27
What could a security team use the command line tool Nmap for when implementing the Inventory and Control of Hardware Assets Control?

  • A. Inventory offline databases
  • B. Control which devices can connect to the network
  • C. Actively identify new servers
  • D. Passively identify new devices

正解:C


質問 # 28
An organization has implemented a policy to continually detect and remove malware from its network. Which of the following is a detective control needed for this?

  • A. Host-based firewall sends alerts when packets are sent to a closed port
  • B. Network Intrusion Detection devices sends alerts when signatures are updated
  • C. Network Intrusion Prevention sends alerts when RST packets are received
  • D. Host-based anti-virus sends alerts to a central security console

正解:D


質問 # 29
Which of the following is a requirement in order to implement the principle of least privilege?

  • A. Data classification
  • B. Data normalization
  • C. Mandatory Access Control (MAC)
  • D. Discretionary Access Control (DAC)

正解:A


質問 # 30
What documentation should be gathered and reviewed for evaluating an Incident Response program?

  • A. Results from security training assessments
  • B. NIST Cybersecurity Framework
  • C. Policy and Procedures
  • D. Staff member interviews

正解:C


質問 # 31
John is implementing a commercial backup solution for his organization. Which of the following steps should be on the configuration checklist?

  • A. Disable software-level encryption to increase speed of transfer
  • B. Develop a unique encryption scheme
  • C. Enable encryption if it 's not enabled by default

正解:C


質問 # 32
A breach was discovered after several customers reported fraudulent charges on their accounts. The attacker had exported customer logins and cracked passwords that were hashed but not salted. Customers were made to reset their passwords.
Shortly after the systems were cleaned and restored to service, it was discovered that a compromised system administrator's account was being used to give the attacker continued access to the network. Which CIS Control failed in the continued access to the network?

  • A. Maintenance, Monitoring, and Analysis of Audit Logs
  • B. Controlled Use of Administrative Privilege
  • C. Incident Response and Management
  • D. Account Monitoring and Control

正解:C


質問 # 33
A security incident investigation identified the following modified version of a legitimate system file on a compromised client:
C:\Windows\System32\winxml.dll Addition Jan. 16, 2014 4:53:11 PM
The infection vector was determined to be a vulnerable browser plug-in installed by the user. Which of the organization's CIS Controls failed?

  • A. Inventory and Control of Hardware Assets
  • B. Maintenance, Monitoring, and Analysis of Audit Logs
  • C. Inventory and Control of Software Assets
  • D. Application Software Security

正解:C


質問 # 34
What is a zero-day attack?

  • A. An attack that is launched the day the patch is released
  • B. An attack that deploys at the end of a countdown sequence
  • C. An attack that has a known attack signature but no available patch
  • D. An attack that utilizes a vulnerability unknown to the software developer

正解:D


質問 # 35
Which of the following actions produced the output seen below?

  • A. An access rule was removed from firewallrules2.txt
  • B. An access rule was removed from firewallrules.txt
  • C. An access rule was added to firewallrules2.txt
  • D. An access rule was added to firewallrules.txt

正解:C


質問 # 36
Which of the following is necessary to automate a control for Inventory and Control of Hardware Assets?

  • A. A centralized time server
  • B. An up-to-date hardening guide
  • C. An inventory of unauthorized assets
  • D. A method of device scanning

正解:D


質問 # 37
How often should the security awareness program be communicated to employees?

  • A. Annually
  • B. Monthly
  • C. At orientation and review times
  • D. Continuously

正解:D


質問 # 38
Allied services have recently purchased NAC devices to detect and prevent non-company owned devices from attaching to their internal wired and wireless network. Corporate devices will be automatically added to the approved device list by querying Active Directory for domain devices. Non-approved devices will be placed on a protected VLAN with no network access. The NAC also offers a web portal that can be integrated with Active Directory to allow for employee device registration which will not be utilized in this deployment.
Which of the following recommendations would make NAC installation more secure?

  • A. Disable the web portal device registration service
  • B. Configure Active Directory to push an updated inventory to the NAC daily
  • C. Change the wireless password following the NAC implementation
  • D. Enforce company configuration standards for personal mobile devices

正解:A


質問 # 39
......

最新でリアルなGCCC試験問題集解答:https://jp.fast2test.com/GCCC-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어