Reference no: EM133276921

Part 1

1. From a security perspective, what should organizations expect will occur as they become more dependent on the Internet of Things (IoT)?

A. Security risks will stay the same.

B. Security risks will increase.

C. Security risks will decrease.

D. Security risks will be eliminated

2. Arturo would like to connect a fibre channel storage device to systems over a standard data network. What protocol should he use?

A. Secure Shell (SSH)

B. Fibre Channel (FC)

C. Fibre Channel over Ethernet (FCoE)

D. Internet Small Computer System Interface (iSCSI)

3. What protocol is responsible for assigning Internet Protocol (IP) addresses to hosts on many networks?

A. Dynamic Host Configuration Protocol (DHCP)

B. Transport Layer Security (TLS)

C. IP

D. Simple Mail Transfer Protocol (SMTP)

4. With the use of Mobile IP, which device is responsible for assigning each mobile node (MN) a local address?

A. Foreign agent (FA)

B. Care of address (COA)

C. Home agent (HA)

D. Correspondent node (CN)

5. A ________ is used to identify the part of an Ethernet network where all hosts share the same host address.

A. router

B. access point

C. switch

D. subnet mask

6. True or False? To create the most secure network, configure the firewall to allow all messages except the ones that are explicitly denied.

7. True or False? Bring Your Own Device (BYOD) opens the door to considerable security issues.

8. True or False? Facility automation uses Internet of Things (IoT) to integrate automation into business functions to reduce reliance on machinery.

9. True or False? Internet of Things (IoT) upgrades can be difficult to distribute and deploy, leaving gaps in the remediation of IoT devices or endpoints.

10. True or False? The ownership of Internet of Things (IoT) data, as well as the metadata of that data, is sometimes in question

Part 2

1. Lin is conducting an audit of an identity management system. Which question is not likely to be in the scope of her audit?

A. Does the firewall properly block unsolicited network connection attempts?

B. Is the password policy uniformly enforced?

C. Does the organization have an effective password policy?

D. Who grants approval for access requests?

2. Antonio is responsible for tuning his organization's intrusion detection system. He notices that the system reports an intrusion alert each time that an administrator connects to a server using Secure Shell (SSH). What type of error is occurring?

A. Clipping error

B. False negative error

C. False positive error

D. Remote administration error

3. What is a goal of vulnerability testing?

A. Documenting the lack of security control or misconfiguration

B. Bypassing controls

C. Identifying threats

D. Exploiting vulnerabilities

4. Isaac is responsible for performing log reviews for his organization in an attempt to identify security issues. He has a massive amount of data to review. What type of tool would best assist him with this work?

A. Virtual private network (VPN)

B. Security information and event management (SIEM) system

C. Data loss prevention (DLP) system

D. Intrusion prevention system (IPS)

5. True or False? A host-based intrusion detection system (HIDS) can recognize an anomaly that is specific to a particular machine or user.

7. True or False? Signature-based intrusion detection systems (IDSs) compare current activity with stored profiles of normal (expected) activity.

8. True or False? ISO 27002 is a best-practices document that gives guidelines for information security management.

10. True or False? When planning an IT audit, one must ensure that the areas not reviewed in the current audit will be subject to another audit.