最新的 GIAC Certification GCIL 免費考試真題:

1. An organization's incident response team struggled to coordinate efforts during a recent ransomware attack. What should be done to improve their response in the future?
Response:

A) Focus only on external security threats
B) Assign response tasks randomly to available employees
C) Limit access to security tools to a single person
D) Provide ongoing cybersecurity training and conduct tabletop exercises

2. Which security control is most effective at preventing credential stuffing attacks?
Response:

A) Deploying Web Application Firewalls (WAF)
B) Implementing strong password policies
C) Role-based access control (RBAC)
D) Using multi-factor authentication (MFA)

3. An ongoing data breach is affecting your organization's customer records. The public relations team is preparing an official statement for affected customers. What key information should be included in the statement?
Response:

A) The impact of the breach, the organization's response, and support for affected individuals
B) The exact technical details of how the breach occurred
C) The specific names of employees responsible for the breach
D) The internal security measures that failed to prevent the attack

4. Which of the following is a common initial infection vector for ransomware?
Response:

A) Poor website SEO ranking
B) Phishing emails with malicious attachments
C) Unauthorized hardware installation
D) Sending security patches to end-users

5. Which of the following should be included in an internal incident report?
Response:

A) Detailed timeline of the incident and mitigation steps
B) A comparison of the incident to previous attacks in the industry
C) Speculative analysis of the attacker's identity
D) Personal opinions on the effectiveness of security controls

問題與答案：