最新的Security+認證 JK0-018考試題庫

問題1

After analyzing and correlating activity from multiple sensors, the security administrator has determined that a group of very well organized individuals from an enemy country is responsible for various attempts to breach the company network, through the use of very sophisticated and targeted attacks. Which of the following is this an example of?

A. Advanced persistent threat

B. Malicious insider threat

C. Spear phishing

D. Privilege escalation

正確答案: A

問題2

After a number of highly publicized and embarrassing customer data leaks as a result of social engineering attacks by phone, the Chief Information Officer (CIO) has decided user training will reduce the risk of another data leak. Which of the following would be MOST effective in reducing data leaks in this situation?

A. Data Handling and Disposal

B. Information Security Awareness

C. Acceptable Use of IT Systems

D. Social Media and BYOD

正確答案: B

問題3

An achievement in providing worldwide Internet security was the signing of certificates associated with which of the following protocols?

A. SSH

B. TCP/IP

C. SSL

D. SCP

正確答案: C

說明：（僅 VCESoft 成員可見）

問題4

Which of the following security strategies allows a company to limit damage to internal systems and provides loss control?

A. Detection strategies

B. Containment strategies

C. Restoration and recovery strategies

D. Deterrent strategies

正確答案: B

問題5

A company's employees were victims of a spear phishing campaign impersonating the CEO. The company would now like to implement a solution to improve the overall security posture by assuring their employees that email originated from the CEO. Which of the following controls could they implement to BEST meet this goal?

A. Digital signatures

B. Digital certificates

C. Spam filter

D. Antivirus software

正確答案: A

問題6

Pete, a security administrator, has observed repeated attempts to break into the network. Which of the following is designed to stop an intrusion on the network?

A. HIDS

B. NIPS

C. HIPS

D. NIDS

正確答案: B

問題7

A security analyst implemented group-based privileges within the company active directory. Which of the following account management techniques should be undertaken regularly to ensure least privilege principles?

A. Verify smart card access controls.

B. Verify SHA-256 for password hashes.

C. Leverage role-based access controls.

D. Perform user group clean-up.

正確答案: D

問題8

Ann, the network administrator, has learned from the helpdesk that employees are accessing the wireless network without entering their domain credentials upon connection. Once the connection is made, they cannot reach any internal resources, while wired network connections operate smoothly. Which of the following is MOST likely occurring?

A. The company's WEP encryption has been compromised and WPA2 needs to be implemented instead.

B. A user has plugged in a personal access point at their desk to connect to the network wirelessly.

C. An attacker has installed an access point nearby in an attempt to capture company information.

D. The company is currently experiencing an attack on their internal DNS servers.

正確答案: C

問題9

The Chief Security Officer (CSO) is concerned about misuse of company assets and wishes to determine who may be responsible. Which of the following would be the BEST course of action?

A. Create a single, shared user account for every system that is audited and logged based upon time of use.

B. Enact a policy that employees must use their vacation time in a staggered schedule.

C. Separate employees into teams led by a person who acts as a single point of contact for observation purposes.

D. Implement a single sign-on application on equipment with sensitive data and high-profile shares.

正確答案: B

問題10

In the case of a major outage or business interruption, the security office has documented the expected loss of earnings, potential fines and potential consequence to customer service. Which of the following would include the MOST detail on these objectives?

A. Disaster Recovery Plan

B. Continuity of Operations

C. Business Impact Analysis

D. IT Contingency Plan

正確答案: C

問題11

Which of the following is an effective way to ensure the BEST temperature for all equipment within a datacenter?

A. Fire suppression

B. EMI shielding

C. Raised floor implementation

D. Hot or cool aisle containment

正確答案: D

問題12

The finance department works with a bank which has recently had a number of cyber attacks. The finance department is concerned that the banking website certificates have been compromised. Which of the following can the finance department check to see if any of the bank's certificates are still valid?

A. Bank's CRL

B. Bank's recovery agent

C. Bank's private key

D. Bank's key escrow

正確答案: A

問題13

Which of the following allows an organization to store a sensitive PKI component with a trusted third party?

A. Trust model

B. Private key

C. Key escrow

D. Public Key Infrastructure

正確答案: C

問題14

Which of the following provides the LEAST availability?

A. RAID 3

B. RAID 1

C. RAID 5

D. RAID 0

正確答案: D

問題15

A company is trying to limit the risk associated with the use of unapproved USB devices to copy documents. Which of the following would be the BEST technology control to use in this scenario?

A. IDS

B. Audit logs

C. Content filtering

D. DLP

正確答案: D

最新的CompTIA Security+ Certification - JK0-018免費考試真題

最新更新

站內鏈接

聯系我們