Loading...
Network engineer interview most asked questions
Quiz by Vikas Swami
Customize this quiz to suit your class
Instantly translate to 100+ languages
Tag the questions with any skills you have. Your dashboard will track each student's mastery of each skill.
Give this quiz to my class
Spectacular - Spektakulär Unexpected - Oväntad A moment of truce - Ett vapenstillestånd Push the limits - Tänja på gränserna Free climber - Fria klättrare Descriptions - Beskrivningar Get a rush from - Få en kick från End up face to face with sharks - Sluta ansikte mot ansikte med hajar Crawling - Krypande Chalk powder - Kritpulver Pouch around your waist - Påse runt din midja On purpose - Med avsikt Seek thrills - Söka spänningar Accomplish my dreams - Uppnå mina drömmar Comes at a cost - Kommer med ett pris Permission - Tillstånd Achievements - Framgångar Fallen from heights - Fallit från höjder Fallen into a coma - Hamnat i koma Stiches - Stygn Target - Mål Reaching his goal - Nå sitt mål Retell - Berätta om Ordinary people - Vanliga människor Uncommon - Ovanlig On American soil - På amerikansk mark Hijacked - Kapat The outcome - Resultatet The public - Allmänheten Structural engineer - Byggnadsingenjör Port - Hamn Witnessing - Vittna Make it down the stairwell - Ta sig ner för trapphuset A roaring sound - Ett brölande ljud Take cover - Söka skydd Crouched down - Hopkrupen The walls cracked open - Väggarna sprack upp Underneath - Under Fall unconscious - Förlora medvetandet In the rubble - I rasmassorna Unaware of - Omedveten om Devastating moment in history - Förödande ögonblick i historien The mobile network is down - Mobilnätverket ligger nere Commit crimes - Begå brott Throughout history - Genom historien Path - Väg Whiny voice - Gnällig röst Wearing him down - Slita ner honom Long for - Längta efter Thumping - Dunkande Spiked with a deadly dose of poison - Spetsad med en dödlig dos gift Gone through with it - Genomfört det Constant nagging - Ständigt gnäll Infidelity - Otrohet Carved - Skuren Perform on the big stages - Uppträda på de stora scenerna Unrealistic demands - Orealistiska krav Something fishy is going on - Något skumt pågår Offered a reward - Erbjöd en belöning Downfall - Fall Accomplice - Medbrottsling Undoubtedly - Utan tvekan Board a ship - Stiga ombord på ett skepp Suspense - Spänning Trip on a wire - Snubbla på en tråd Invention - Uppfinning Customs officer - Tulltjänsteman Extraordinary - Extraordinär Nearly - Nästan The entire population - Hela befolkningen Cease to exist - Upphöra att existera Great courage - Stort mod Goodwill - God vilja A little bit of humanity - Lite mänsklighet In the midst - Mitt ibland Lose faith in - Förlora tro på Snowflakes - Snöflingor Turn the doorknob - Vrida dörrknoppen Shelter - Skydd Gesture towards the cabin - Gesta mot stugan Pale - Blek Commotion - Uppståndelse Medic - Sjukvårdare Ease up the tension - Minska spänningen Extend his hand - Sträcka ut sin hand Painkillers - Smärtstillande Supper - Kvällsmat Foolish - Dum Establish - Etablera Drop a nuclear bomb - Släppa en kärnvapenbomb The Great Plague - Den stora pesten Civil rights - Medborgerliga rättigheter Underline - Understryka Keen on - Angelägen omMultiple Choice Questions A6. You’ve hired a third-party to gather information about your company’s servers and data. The third-party will not have direct access to your internal network but can gather information from any other source. Which of the following would BEST describe this approach? ❍ A. Backdoor testing ❍ B. Passive footprinting ❍ C. OS fingerprinting ❍ D. Partially known environment A7. Which of these protocols use TLS to provide secure communication? (Select TWO) ❍ A. HTTPS ❍ B. SSH ❍ C. FTPS ❍ D. SNMPv2 ❍ E. DNSSEC ❍ F. SRTP A8. Which of these threat actors would be MOST likely to attack systems for direct financial gain? ❍ A. Organized crime ❍ B. Hacktivist ❍ C. Nation state ❍ D. Competitor A9. A security incident has occurred on a file server. Which of the following data sources should be gathered to address file storage volatility? (Select TWO) ❍ A. Partition data ❍ B. Kernel statistics ❍ C. ROM data ❍ D. Temporary file systems ❍ E. Process table Quick Answer: 33 The Details: 43 Quick Answer: 33 The Details: 44 Quick Answer: 33 The Details: 45 Quick Answer: 33 The Details: 46 6 Practice Exam A - Questions A10. An IPS at your company has found a sharp increase in traffic from all-in-one printers. After researching, your security team has found a vulnerability associated with these devices that allows the device to be remotely controlled by a third-party. Which category would BEST describe these devices? ❍ A. IoT ❍ B. RTOS ❍ C. MFD ❍ D. SoC A11. Which of the following standards provides information on privacy and managing PII? ❍ A. ISO 31000 ❍ B. ISO 27002 ❍ C. ISO 27701 ❍ D. ISO 27001 A12. Elizabeth, a security administrator, is concerned about the potential for data exfiltration using external storage drives. Which of the following would be the BEST way to prevent this method of data exfiltration? ❍ A. Create an operating system security policy to prevent the use of removable media ❍ B. Monitor removable media usage in host-based firewall logs ❍ C. Only allow applications that do not use removable media ❍ D. Define a removable media block rule in the UTM Quick Answer: 33 The Details: 47 Quick Answer: 33 The Details: 48 Quick Answer: 33 The Details: 49 Practice Exam A - Questions 7 A13. A CISO (Chief Information Security Officer) would like to decrease the response time when addressing security incidents. Unfortunately, the company does not have the budget to hire additional security engineers. Which of the following would assist the CISO with this requirement? ❍ A. ISO 27701 ❍ B. PKI ❍ C. IaaS ❍ D. SOAR A14. An insurance company has created a set of policies to handle data breaches. The security team has been given this set of requirements based on these policies: • Access records from all devices must be saved and archived • Any data access outside of normal working hours must be immediately reported • Data access must only occur inside of the country • Access logs and audit reports must be created from a single database Which of the following should be implemented by the security team to meet these requirements? (Select THREE) ❍ A. Restrict login access by IP address and GPS location ❍ B. Require government-issued identification during the onboarding process ❍ C. Add additional password complexity for accounts that access data ❍ D. Conduct monthly permission auditing ❍ E. Consolidate all logs on a SIEM ❍ F. Archive the encryption keys of all disabled accounts ❍ G. Enable time-of-day restrictions on the authentication server Quick Answer: 33 The Details: 50 Quick Answer: 33 The Details: 51 8 Practice Exam A - Questions A15. Rodney, a security engineer, is viewing this record from the firewall logs: UTC 04/05/2018 03:09:15809 AV Gateway Alert 136.127.92.171 80 -> 10.16.10.14 60818 Gateway Anti-Virus Alert: XPACK.A_7854 (Trojan) blocked. Which of the following can be observed from this log information? ❍ A. The victim's IP address is 136.127.92.171 ❍ B. A download was blocked from a web server ❍ C. A botnet DDoS attack was blocked ❍ D. The Trojan was blocked, but the file was not A16. A user connects to a third-party website and receives this message: Your connection is not private. NET::ERR_CERT_INVALID Which of the following attacks would be the MOST likely reason for this message? ❍ A. Brute force ❍ B. DoS ❍ C. On-path ❍ D. Disassociation A17. Which of the following would be the BEST way to provide a website login using existing credentials from a third-party site? ❍ A. Federation ❍ B. 802.1X ❍ C. PEAP ❍ D. EAP-FAST Quick Answer: 33 The Details: 53 Quick Answer: 33 The Details: 54 Quick Answer: 33 The Details: 55 Practice Exam A - Questions 9 A18. A system administrator, Daniel, is working on a contract that will specify a minimum required uptime for a set of Internet-facing firewalls. Daniel needs to know how often the firewall hardware is expected to fail between repairs. Which of the following would BEST describe this information? ❍ A. MTBF ❍ B. RTO ❍ C. MTTR ❍ D. MTTF A19. An attacker calls into a company’s help desk and pretends to be the director of the company’s manufacturing department. The attacker states that they have forgotten their password and they need to have the password reset quickly for an important meeting. What kind of attack would BEST describe this phone call? ❍ A. Social engineering ❍ B. Tailgating ❍ C. Watering hole ❍ D. On-path A20. A security administrator has been using EAP-FAST wireless authentication since the migration from WEP to WPA2. The company’s network team now needs to support additional authentication protocols inside of an encrypted tunnel. Which of the following would meet the network team’s requirements? ❍ A. EAP-TLS ❍ B. PEAP ❍ C. EAP-TTLS ❍ D. EAP-MSCHAPv2 Quick Answer: 33 The Details: 56 Quick Answer: 33 The Details: 57 Quick Answer: 33 The Details: 58 10 Practice Exam A - Questions A21. Which of the following would be commonly provided by a CASB? (Select TWO) ❍ A. List of all internal Windows devices that have not installed the latest security patches ❍ B. List of applications in use ❍ C. Centralized log storage facility ❍ D. List of network outages for the previous month ❍ E. Verification of encrypted data transfers ❍ F. VPN connectivity for remote users A22. The embedded OS in a company’s time clock appliance is configured to reset the file system and reboot when a file system error occurs. On one of the time clocks, this file system error occurs during the startup process and causes the system to constantly reboot. Which of the following BEST describes this issue? ❍ A. DLL injection ❍ B. Resource exhaustion ❍ C. Race condition ❍ D. Weak configuration A23. A recent audit has found that existing password policies do not include any restrictions on password attempts, and users are not required to periodically change their passwords. Which of the following would correct these policy issues? (Select TWO) ❍ A. Password complexity ❍ B. Password expiration ❍ C. Password history ❍ D. Password lockout ❍ E. Password recovery Quick Answer: 33 The Details: 59 Quick Answer: 33 The Details: 60 Quick Answer: 33 The Details: 61 Practice Exam A - Questions 11 A24. What kind of security control is associated with a login banner? ❍ A. Preventive ❍ B. Deterrent ❍ C. Corrective ❍ D. Detective ❍ E. Compensating ❍ F. Physical A25. A security team has been provided with a noncredentialed vulnerability scan report created by a thirdparty. Which of the following would they expect to see on this report? ❍ A. A summary of all files with invalid group assignments ❍ B. A list of all unpatched operating system files ❍ C. The version of web server software in use ❍ D. A list of local user accounts A26. A business manager is documenting a set of steps for processing orders if the primary Internet connection fails. Which of these would BEST describe these steps? ❍ A. Communication plan ❍ B. Continuity of operations ❍ C. Stakeholder management ❍ D. Tabletop exercise A27. A security administrator is concerned about data exfiltration resulting from the use of malicious phone charging stations. Which of the following would be the BEST way to protect against this threat? ❍ A. USB data blocker ❍ B. Personal firewall ❍ C. MFA ❍ D. FDE Quick Answer: 33 The Details: 62 Quick Answer: 33 The Details: 63 Quick Answer: 33 The Details: 64 Quick Answer: 33 The Details: 65 12 Practice Exam A - Questions A28. A company would like to protect the data stored on laptops used in the field. Which of the following would be the BEST choice for this requirement? ❍ A. MAC ❍ B. SED ❍ C. CASB ❍ D. SOAR A29. A file server has a full backup performed each Monday at 1 AM. Incremental backups are performed at 1 AM on Tuesday, Wednesday, Thursday, and Friday. The system administrator needs to perform a full recovery of the file server on Thursday afternoon. How many backup sets would be required to complete the recovery? ❍ A. 2 ❍ B. 3 ❍ C. 4 ❍ D. 1Computing - Year 3 - We are network engineersPlăcile de rețea (Network Interface Cards-NICs) conectează un echipament la rețea. Plăcile de rețea Ethernet sunt folosite pentru o conexiune cablată, în timp ce plăcile de rețea WLAN (Wireless Local Area Network) sunt folosite pentru wireless. Un echipament cu utilizator final ar putea include unul sau ambele tipuri de plăci de rețea. De exemplu, o imprimantă de rețea poate avea doar o placă de rețea Ethernet, așadar, trebuie să se conecteze la rețea printr-un cablu Ethernet. Alte echipamente, precum tabletele sau telefoanele pot conține o placă de rețea WLAN și trebuie să folosească o conexiune wireless. Layer-ul Fizic Layer-ul fizic de la OSI furnizează mijloacele de transport a biților care realizează un frame de data link în mediul de rețea. Acest layer acceptă un frame complet de la layer-ul data link și îl codifică sub forma unor serii de semnale care sunt transmise în mediul local. Biții codificați care comprimă un frame sunt primiți fie de un echipament final, fie de unul intermediar. Procesul prin care trec datele de la nodul sursă la nodus destinație este: • Datele utilizatorului sunt segmentate de layer-ul transport, plasate în pachete de către layer-ul rețea, iar apoi încapsulate sub formă de frame-uri de către layer-ul data link. • Layer-ul fizic codifică frame-urile și creează semnalele undelor electrice, optice și radio care reprezintă biții în fiecare frame. • Aceste semnale sunt trimise în mediu pe rând. • Nodul destinație preia aceste semnale individuale de la nivelul fizic, le transformă în reprezentare binară și transmit biții la nivelul superior, data link, sub forma unui frame. Mediul layer-ului Fizic Există trei forme de bază ale mediului de rețea. Layer-ul fizic produce reprezentarea și gruparea biților pentru fiecare mediu, după cum urmează: • Cablu de cupru: Semnalele sunt modele ale pulsurilor electrice. • Cablul cu fibră optică: Semnalele sunt modele de lumină. • Wireless: Semnalele sunt modele ale transmisiunilor cu microunde. Figura afișează exemple de semnalizare pentru cupru, fibră optică și wireless. Pentru a activa interoperabilitatea layer-ului fizic, toate aspectele acestor funcții sunt guvernate de organizațiile de standardizare. Standardele Layer-ului Fizic Protocoalele și operațiile layerelor superioare din OSI sunt efectuate în software proiectat de ingineri și oameni de știință. De exemplu, serviciile și protocoalele din suita TCP/IP sunt definite de Internet Engineering Task Force (IETF) în RFC-uri așa cum se arată în Figura 1. Layer-ul fizic constă în circuite electronice, mediu și conectori dezvoltați de ingineri. Așadar, este corespunzător ca standardele care guvernează acest hardware să fie definite de orgnizațiile relevante din domeniul ingineriei și electronicii. Există mai multe organizații naționale și internaționale diferite, organizații guvernamentale de reglementare și companii private implicate în stabilirea și menținerea standardelor layer-ului fizic. De exemplu, hardware-ul layer-ului fizic, mediul, codificarea și standardele de semnalizare sunt definite și guvernate de către: • International Organization for Standardization (ISO) • Telecommunications Industry Association/Electronic Industries Association (TIA/EIA) • International Telecommunication Union (ITU) • American National Standards Institute (ANSI) • Institute of Electrical and Electronics Engineers (IEEE) • Autoritățile de reglementare națională a telecomunicațiilor, inclusiv Federal Communication Commission (FCC) din USA și European Telecommunications Standards Institute (ESTI) Pe lângă acestea, există grupuri de standardizare a cablărilor regionale precum CSA (Canadian Standards Association), CENELEC (European Committee for Electrotechnical Standardization) și JSA/JSI (Japanese Standards Association), care dezvoltă specificații locale. Figura 2 listează contribuitorii principali și câteva standarde relevante ale layer-ului fizic.NetworkNetwork Systems & Social Computing Cloud ComputingNetwork cablingNetwork, alternate, dynasty, conflict, recruit, decade, respectively, peak, prosperous, decline