Security experts at your organization have determined that your network has been repeatedly attacked from multiple entities in a foreign country. Research indicated that these are coordinated and sophisticated attacks. What best describes tbis activity

Which of the following tools is the most invasive type of testing

A network administrator is attempting to identify all traffic on an internal network. Which of the following tools is the best choice

A security administrator is reviewing an organization's security policy and notices that the policy does not define a time frame for reviewing user rights and permissions. Which of the following is the minimum time frame that she should recomend

Security personnel recently performed a security audit. They identified several employees who had permissions for previously held jobs within the company. What should the organization implement to prevent this in the future?

You are a technician at a small company. You need to add fault tolerance capabilities within the business to increase availability of data. However, you need to keep costs as low as possible. Which of the following is the best choice

Which of the following next represents the goal of performing a vulnerability assessment

A recent change in an organization's security policy states that monitors need to be positioned so that they cannot be viewed from outside any windows. What is the purpose of this policy

Which of the following security devices can be replicated on a Linux based computer using IP tables to inspect and properly handle network based traffic?

Which of the following devices would be MOST useful to ensure availability when there are a large number of requests to a certain website?

Pete, the system administrator, wants to restrict access to advertisements, games, and gambling web sites. Which of the following devices would BEST achieve this goal?

Which of the following is BEST at blocking attacks and providing security at layer 7 of the OSI model?

A company has several conference rooms with wired network jacks that are used by both employees and guests. Employees need access to internal resources and guests only need access to the Internet. Which of the following combinations is BEST to meet the requirements?

Which of the following practices reduces the management burden of access management?

Four weeks ago, a network administrator applied a new IDS and allowed it to gather baseline data. As rumors of a layoff began to spread, the IDS alerted the network administrator that access to sensitive client files had risen far above normal. Which of the following kind of IDS is in use?

A small company wants to employ PKI. The company wants a cost effective solution that must be simple and trusted. They are considering two options: X.509 and PGP. Which of the following would be the BEST option?

Which of the following describes the purpose of an MOU

Which of the following defines a business goal for system restoration and acceptable data loss?

Identifying residual risk is MOST important to which of the following concepts?

Which of the following is a management control?

Which of the following network design elements allows for many internal devices to share one public ip address

Which of the following will help prevent smurf attacks?

RC4 is a strong encryption protocol that is generally used with which of the following

A security administrator must implement a secure key exchange protocol that will allow company clients to autonomously exchange symmetric encryption keys over an unencrypted channel. Which of the following MUST be implemented?

hich of the following components of an all-in-one security appliance would MOST likely be configured in order to restrict access to peer-to-peer file sharing websites?