GCCC無料試験学習ガイド!(更新された95問あります)
GCCC問題集にはCyber Security認証済み試験問題と解答
GIAC GCCC(GIAC Critical Controls認定)は、重要なセキュリティ管理の実装、維持、監査における個人の知識とスキルのテストに焦点を当てた認定試験です。この試験は、組織内のセキュリティコントロールの作成、実装、および管理を担当する専門家向けに設計されています。この認定はサイバーセキュリティ業界でよく尊敬されており、試験に合格すると、専門家が認知度を高め、キャリアを促進するのに役立ちます。
質問 # 27
Which of the following will decrease the likelihood of eavesdropping on a wireless network?
- A. Broadcasting in the 5Ghz frequency
- B. Using Wired Equivalent Protocol (WEP)
- C. Using EAP/TLS authentication and WPA2 with AES encryption
- D. Putting the wireless network on a separate VLAN
正解:C
質問 # 28
Which projects enumerates or maps security issues to CVE?
- A. SCAP
- B. ISO 2700
- C. NIST
- D. CIS Controls
正解:A
質問 # 29
A security incident investigation identified the following modified version of a legitimate system file on a compromised client:
C:\Windows\System32\winxml.dll Addition Jan. 16, 2014 4:53:11 PM
The infection vector was determined to be a vulnerable browser plug-in installed by the user. Which of the organization's CIS Controls failed?
- A. Inventory and Control of Software Assets
- B. Application Software Security
- C. Maintenance, Monitoring, and Analysis of Audit Logs
- D. Inventory and Control of Hardware Assets
正解:A
質問 # 30
What type of Unified Modelling Language (UML) diagram is used to show dependencies between logical groupings in a system?
- A. Deployment diagram
- B. Class diagram
- C. Package diagram
- D. Use case diagram
正解:C
質問 # 31
Which of the following can be enabled on a Linux based system in order to make it more difficult for an attacker to execute malicious code after launching a buffer overflow attack?
- A. TCP Wrappers
- B. ASLR
- C. Tripwire
- D. SUID
- E. Iptables
正解:B
質問 # 32
Kenya is a system administrator for SANS. Per the recommendations of the CIS Controls she has a dedicated host (kenya- adminbox / 10.10.10.10) for any administrative tasks. She logs into the dedicated host with her domain admin credentials. Which of the following connections should not exist from kenya-adminbox?
- A. Firewall_charon.jane.org.22
- B. 10.10.10.33.443
- C. 10.10.245.3389
- D. Mail.jane.org.25
正解:D
質問 # 33
Which of the following is a requirement in order to implement the principle of least privilege?
- A. Data classification
- B. Mandatory Access Control (MAC)
- C. Discretionary Access Control (DAC)
- D. Data normalization
正解:A
質問 # 34
To effectively implement the Data Protection CIS Control, which task needs to be implemented first?
- A. The organization's proprietary data needs to be identified
- B. Employees need to be notified that proprietary data should be protected
- C. Appropriate file content matching needs to be configured
- D. The organization's proprietary data needs to be encrypted
正解:A
質問 # 35
Below is a screenshot from a deployed next-generation firewall. These configuration settings would be a defensive measure for which CIS Control?
- A. Limitation and Control of Network Ports, Protocols and Services
- B. Email and Web Browser Protections
- C. Controlled Access Based on the Need to Know
- D. Secure Configuration for Network Devices, such as Firewalls, Routers and Switches.
正解:B
質問 # 36
Of the options shown below, what is the first step in protecting network devices?
- A. Creating standard secure configurations for all devices
- B. Applying all known security patches
- C. Scanning the devices for known vulnerabilities
- D. Implementing IDS to detect attacks
正解:A
質問 # 37
Implementing which of the following will decrease spoofed e-mail messages?
- A. Sender Policy Framework
- B. Internet Message Access Protocol
- C. Network Address Translation
- D. Finger Protocol
正解:A
質問 # 38
According to attack lifecycle models, what is the attacker's first step in compromising an organization?
- A. Privilege Escalation
- B. Exploitation
- C. Reconnaissance
- D. Initial Compromise
正解:C
質問 # 39
Which of the following actions will assist an organization specifically with implementing web application software security?
- A. Having a plan to scan vulnerabilities of an application prior to deployment
- B. Making sure that all hosts are patched during regularly scheduled maintenance
- C. Providing end-user security training to both internal staff and vendors
- D. Establishing network activity baselines among public-facing servers
正解:A
質問 # 40
How does an organization's hardware inventory support the control for secure configurations?
- A. It identifies the life cycle of manufacturer support for hardware devices
- B. It provides a list of managed devices that should be secured
- C. It provides the MAC addresses for insecure network adapters
- D. It provides a list of unauthorized devices on the network
正解:B
質問 # 41
A breach was discovered after several customers reported fraudulent charges on their accounts. The attacker had exported customer logins and cracked passwords that were hashed but not salted. Customers were made to reset their passwords.
Shortly after the systems were cleaned and restored to service, it was discovered that a compromised system administrator's account was being used to give the attacker continued access to the network. Which CIS Control failed in the continued access to the network?
- A. Maintenance, Monitoring, and Analysis of Audit Logs
- B. Controlled Use of Administrative Privilege
- C. Incident Response and Management
- D. Account Monitoring and Control
正解:C
質問 # 42
What is an organization's goal in deploying a policy to encrypt all mobile devices?
- A. Enabling best practices for the protection of their software licenses
- B. Providing their employees, a secure method of connecting to the corporate network
- C. Applying the principle of defense in depth to their mobile devices
- D. Controlling unauthorized access to sensitive information
正解:D
質問 # 43
An organization wants to test its procedure for data recovery. Which of the following will be most effective?
- A. Verifying that network backups can't be read in transit
- B. Verifying there are no errors in the backup server logs
- C. Verifying that backup process is running when it should
- D. Verifying a file can be recovered from backup media
正解:D
質問 # 44
Which of the following should be measured and analyzed regularly when implementing the Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers CIS Control?
- A. How long does it take to remove unauthorized software from the organization's systems
- B. What percentage of assets will have their settings enforced and redeployed
- C. What percentage of systems in the organization are using Network Level Authentication (NLA)
- D. How long does it take to identify new unauthorized listening ports on the network systems
- E. What percentage of the organization's applications are using sandboxing products
正解:B
質問 # 45
An organization is implementing a control for the Limitation and Control of Network Ports, Protocols, and Services CIS Control. Which action should they take when they discover that an application running on a web server is no longer needed?
- A. Uninstall the application providing the service
- B. Block the protocol for the unneeded service at the firewall
- C. Create an access list on the router to filter traffic to the host
- D. Turn the service off in the host configuration files
正解:A
質問 # 46
An organization has created a policy that allows software from an approved list of applications to be installed on workstations. Programs not on the list should not be installed. How can the organization best monitor compliance with the policy?
- A. Performing regular port scans of workstations on the network
- B. Creating an IDS signature to alert based on unknown "User-Agent " strings
- C. Comparing system snapshots and alerting when changes are made
- D. Auditing Active Directory and alerting when new accounts are created
正解:B
質問 # 47
An organization has implemented a control for Controlled Use of Administrative Privilege. The control requires users to enter a password from their own user account before being allowed elevated privileges, and that no client applications (e.g. web browsers, e-mail clients) can be run with elevated privileges. Which of the following actions will validate this control is implemented properly?
- A. Force the root account to only be accessible from the system console.
- B. Check the log entries to match privilege use with access from authorized users.
- C. Run a script at intervals to identify processes running with administrative privilege.
正解:C
質問 # 48
Which of the following is necessary for implementing and automating the Continuous Vulnerability Assessment and Remediation CIS Control?
- A. System Configuration Enforcement System
- B. Software Whitelisting System
- C. Patch Management System
- D. Penetration Testing System
正解:C
質問 # 49
......
GIAC GCCC認定試験は厳密で挑戦的なテストであり、候補者の重要なセキュリティ制御とそれらを効果的に実装および管理する能力を評価するように設計されています。この試験は150の複数選択の質問で構成されており、候補者はそれを完了するのに4時間あります。この質問は、候補者が重要なセキュリティ制御フレームワークについての理解をテストするように設計されており、概念を実際のシナリオに適用する能力です。試験に合格するには、少なくとも71%のスコアが必要であり、合格者にはGIAC GCCC認定が授与されます。これは、セキュリティ業界の貴重な資格として認識されています。
GCCC試験は、ネットワークセキュリティのベストプラクティス、エンドポイントセキュリティ、アイデンティティおよびアクセス管理、インシデント対応など、重要なセキュリティコントロールに関連するさまざまなトピックをカバーしています。この試験は、サイバー脅威から組織を保護するために重要なセキュリティコントロールを実装、構成、および維持する能力をテストするように設計されています。
実際問題を使ってGCCC問題集で100%無料GCCC試験問題集:https://jp.fast2test.com/GCCC-premium-file.html