Alysa Study guides, Class notes & Summaries

QUESTIONS AND ANSWERS

CompTIA Cybersecurity Analyst (CySA+) - Module 4: Security Architecture and Tool Sets Which framework was designed to widen the focus of an organization to overall architecture? COBIT TOGAF SABSA ITIL TOGAF (The Open Group Architecture Framework) The procedures in place to test controls need to be examined only by internal parties to ensure security. True False False Which policies are responsible for securing employee profiles? Account Management Policy Acceptable Use Policy D...

CompTIA Cyber security Analyst (CySA+) Assessment Test Already Passed After running an nmap scan of a system, you receive scan data that indicates the following three ports are open:22/TCP443/TCP1521/TCP What services commonly run on these ports? A.SMTP, NetBIOS, MySQL B.SSH, Microsoft DS, WINS C.SSH, HTTPS, Oracle D.FTP, HTTPS, MS-SQL C. These three TCP ports are associated with SSH (22), HTTPS (443), and Oracle databases (1521). Other ports mentioned in the potential answers are S...

- Answer Word pool: Procedures, Guidelines, Policies, Standards ___________ contain high-level statements of management intent ___________ provide mandatory requirements for how policies are carried out ___________ are a step-by-step process ___________ describes a best practice or recommendation - Answer "Policies" contain high-level statements of management intent "Standards" provide mandatory requirements for how policies are carried out "Procedures" are a step-by...

Summary CySA+ (CS0-002) CompTIA Cybersecurity Analyst (CySA+) - 10/17/2022 Exam Prep Answered. Summary CySA+ (CS0-002) CompTIA Cybersecurity Analyst (CySA+) - 10/17/2022 Exam Prep Answered. Summary CySA+ (CS0-002) CompTIA Cybersecurity Analyst (CySA+) - 10/17/2022 Exam Prep Answered. Summary CySA+ (CS0-002) CompTIA Cybersecurity Analyst (CySA+) - 10/17/2022 Exam Prep Answered. Summary CySA+ (CS0-002) CompTIA Cybersecurity Analyst (CySA+) - 10/17/2022 Exam Prep Answere...

All parts of a security policy should be public knowledge. True False - Answer False What reasons might a company forgo scanning a critical system? Too much time Confidentiality Backups already exist Costs too much - Answer Too much time & Costs too much What is the factor that determines scanning frequency characterized by an accepted amount of risk? Technical Constraints Risk Acceptance Risk Appetite Regulatory Requirements - Answer Risk Appetite An assessment scan is ...

2.1 Given a scenario, implement an information security vulnerability management process. - Answer CompTIA • Identification of requirements - Answer As an organization begins developing a vulnerability management program, it should first undertake the identification of any internal or external requirements for vulnerability scanning. These requirements may come from the regulatory environment(s) in which the organization operates and/or internal policy-driven requirements. Vulnerabilit...

Which of the following is an alternate name for topology Discovery? Fingerprinting Footprinting Pivotprinting Sniffing - Answer Footprinting What process allows an analyst to discover the operating system and version of a system? Service Discovery Topology Discovery Log Review OS Fingerprinting - Answer OS Fingerprinting In what order is an ACL processed? From top to bottom From bottom to top Most specific entry first Least specific entry first - Answer From top to bottom...

Which of the following describes a rudimentary threat that would be picked up by an anti-virus or IPS? Known Threat Unknown threat Zero-day threat Advanced Persistent Threat - Answer Known Threat Which of the following describes a threat coming from a well trained attacker such as another country? Known Threat Unknown threat Zero-day threat Advanced Persistent Threat - Answer Advanced Persistent Threat Which of the following describes a threat unknown to the local IT department...

After running an nmap scan of a system, you receive scan data that indicates the following three ports are open:22/TCP443/TCP1521/TCP What services commonly run on these ports? A.SMTP, NetBIOS, MySQL B.SSH, Microsoft DS, WINS C.SSH, HTTPS, Oracle D.FTP, HTTPS, MS-SQL - Answer C. These three TCP ports are associated with SSH (22), HTTPS (443), and Oracle databases (1521). Other ports mentioned in the potential answers are SMTP (25), NetBIOS (137-139), MySQL (3306), WINS (1512), FTP (20 and ...