Loading...
THE STARTUP SURVIVAL CHALLENGE
Quiz by Christanto Peris Sirait
Customize this quiz to suit your class
Instantly translate to 100+ languages
Tag the questions with any skills you have. Your dashboard will track each student's mastery of each skill.
Give this quiz to my class
Multiple Choice Questions A6. You’ve hired a third-party to gather information about your company’s servers and data. The third-party will not have direct access to your internal network but can gather information from any other source. Which of the following would BEST describe this approach? ❍ A. Backdoor testing ❍ B. Passive footprinting ❍ C. OS fingerprinting ❍ D. Partially known environment A7. Which of these protocols use TLS to provide secure communication? (Select TWO) ❍ A. HTTPS ❍ B. SSH ❍ C. FTPS ❍ D. SNMPv2 ❍ E. DNSSEC ❍ F. SRTP A8. Which of these threat actors would be MOST likely to attack systems for direct financial gain? ❍ A. Organized crime ❍ B. Hacktivist ❍ C. Nation state ❍ D. Competitor A9. A security incident has occurred on a file server. Which of the following data sources should be gathered to address file storage volatility? (Select TWO) ❍ A. Partition data ❍ B. Kernel statistics ❍ C. ROM data ❍ D. Temporary file systems ❍ E. Process table Quick Answer: 33 The Details: 43 Quick Answer: 33 The Details: 44 Quick Answer: 33 The Details: 45 Quick Answer: 33 The Details: 46 6 Practice Exam A - Questions A10. An IPS at your company has found a sharp increase in traffic from all-in-one printers. After researching, your security team has found a vulnerability associated with these devices that allows the device to be remotely controlled by a third-party. Which category would BEST describe these devices? ❍ A. IoT ❍ B. RTOS ❍ C. MFD ❍ D. SoC A11. Which of the following standards provides information on privacy and managing PII? ❍ A. ISO 31000 ❍ B. ISO 27002 ❍ C. ISO 27701 ❍ D. ISO 27001 A12. Elizabeth, a security administrator, is concerned about the potential for data exfiltration using external storage drives. Which of the following would be the BEST way to prevent this method of data exfiltration? ❍ A. Create an operating system security policy to prevent the use of removable media ❍ B. Monitor removable media usage in host-based firewall logs ❍ C. Only allow applications that do not use removable media ❍ D. Define a removable media block rule in the UTM Quick Answer: 33 The Details: 47 Quick Answer: 33 The Details: 48 Quick Answer: 33 The Details: 49 Practice Exam A - Questions 7 A13. A CISO (Chief Information Security Officer) would like to decrease the response time when addressing security incidents. Unfortunately, the company does not have the budget to hire additional security engineers. Which of the following would assist the CISO with this requirement? ❍ A. ISO 27701 ❍ B. PKI ❍ C. IaaS ❍ D. SOAR A14. An insurance company has created a set of policies to handle data breaches. The security team has been given this set of requirements based on these policies: • Access records from all devices must be saved and archived • Any data access outside of normal working hours must be immediately reported • Data access must only occur inside of the country • Access logs and audit reports must be created from a single database Which of the following should be implemented by the security team to meet these requirements? (Select THREE) ❍ A. Restrict login access by IP address and GPS location ❍ B. Require government-issued identification during the onboarding process ❍ C. Add additional password complexity for accounts that access data ❍ D. Conduct monthly permission auditing ❍ E. Consolidate all logs on a SIEM ❍ F. Archive the encryption keys of all disabled accounts ❍ G. Enable time-of-day restrictions on the authentication server Quick Answer: 33 The Details: 50 Quick Answer: 33 The Details: 51 8 Practice Exam A - Questions A15. Rodney, a security engineer, is viewing this record from the firewall logs: UTC 04/05/2018 03:09:15809 AV Gateway Alert 136.127.92.171 80 -> 10.16.10.14 60818 Gateway Anti-Virus Alert: XPACK.A_7854 (Trojan) blocked. Which of the following can be observed from this log information? ❍ A. The victim's IP address is 136.127.92.171 ❍ B. A download was blocked from a web server ❍ C. A botnet DDoS attack was blocked ❍ D. The Trojan was blocked, but the file was not A16. A user connects to a third-party website and receives this message: Your connection is not private. NET::ERR_CERT_INVALID Which of the following attacks would be the MOST likely reason for this message? ❍ A. Brute force ❍ B. DoS ❍ C. On-path ❍ D. Disassociation A17. Which of the following would be the BEST way to provide a website login using existing credentials from a third-party site? ❍ A. Federation ❍ B. 802.1X ❍ C. PEAP ❍ D. EAP-FAST Quick Answer: 33 The Details: 53 Quick Answer: 33 The Details: 54 Quick Answer: 33 The Details: 55 Practice Exam A - Questions 9 A18. A system administrator, Daniel, is working on a contract that will specify a minimum required uptime for a set of Internet-facing firewalls. Daniel needs to know how often the firewall hardware is expected to fail between repairs. Which of the following would BEST describe this information? ❍ A. MTBF ❍ B. RTO ❍ C. MTTR ❍ D. MTTF A19. An attacker calls into a company’s help desk and pretends to be the director of the company’s manufacturing department. The attacker states that they have forgotten their password and they need to have the password reset quickly for an important meeting. What kind of attack would BEST describe this phone call? ❍ A. Social engineering ❍ B. Tailgating ❍ C. Watering hole ❍ D. On-path A20. A security administrator has been using EAP-FAST wireless authentication since the migration from WEP to WPA2. The company’s network team now needs to support additional authentication protocols inside of an encrypted tunnel. Which of the following would meet the network team’s requirements? ❍ A. EAP-TLS ❍ B. PEAP ❍ C. EAP-TTLS ❍ D. EAP-MSCHAPv2 Quick Answer: 33 The Details: 56 Quick Answer: 33 The Details: 57 Quick Answer: 33 The Details: 58 10 Practice Exam A - Questions A21. Which of the following would be commonly provided by a CASB? (Select TWO) ❍ A. List of all internal Windows devices that have not installed the latest security patches ❍ B. List of applications in use ❍ C. Centralized log storage facility ❍ D. List of network outages for the previous month ❍ E. Verification of encrypted data transfers ❍ F. VPN connectivity for remote users A22. The embedded OS in a company’s time clock appliance is configured to reset the file system and reboot when a file system error occurs. On one of the time clocks, this file system error occurs during the startup process and causes the system to constantly reboot. Which of the following BEST describes this issue? ❍ A. DLL injection ❍ B. Resource exhaustion ❍ C. Race condition ❍ D. Weak configuration A23. A recent audit has found that existing password policies do not include any restrictions on password attempts, and users are not required to periodically change their passwords. Which of the following would correct these policy issues? (Select TWO) ❍ A. Password complexity ❍ B. Password expiration ❍ C. Password history ❍ D. Password lockout ❍ E. Password recovery Quick Answer: 33 The Details: 59 Quick Answer: 33 The Details: 60 Quick Answer: 33 The Details: 61 Practice Exam A - Questions 11 A24. What kind of security control is associated with a login banner? ❍ A. Preventive ❍ B. Deterrent ❍ C. Corrective ❍ D. Detective ❍ E. Compensating ❍ F. Physical A25. A security team has been provided with a noncredentialed vulnerability scan report created by a thirdparty. Which of the following would they expect to see on this report? ❍ A. A summary of all files with invalid group assignments ❍ B. A list of all unpatched operating system files ❍ C. The version of web server software in use ❍ D. A list of local user accounts A26. A business manager is documenting a set of steps for processing orders if the primary Internet connection fails. Which of these would BEST describe these steps? ❍ A. Communication plan ❍ B. Continuity of operations ❍ C. Stakeholder management ❍ D. Tabletop exercise A27. A security administrator is concerned about data exfiltration resulting from the use of malicious phone charging stations. Which of the following would be the BEST way to protect against this threat? ❍ A. USB data blocker ❍ B. Personal firewall ❍ C. MFA ❍ D. FDE Quick Answer: 33 The Details: 62 Quick Answer: 33 The Details: 63 Quick Answer: 33 The Details: 64 Quick Answer: 33 The Details: 65 12 Practice Exam A - Questions A28. A company would like to protect the data stored on laptops used in the field. Which of the following would be the BEST choice for this requirement? ❍ A. MAC ❍ B. SED ❍ C. CASB ❍ D. SOAR A29. A file server has a full backup performed each Monday at 1 AM. Incremental backups are performed at 1 AM on Tuesday, Wednesday, Thursday, and Friday. The system administrator needs to perform a full recovery of the file server on Thursday afternoon. How many backup sets would be required to complete the recovery? ❍ A. 2 ❍ B. 3 ❍ C. 4 ❍ D. 1The age of startups• the concept of entrepreneurship • the personal motivation behind starting a business such as the desire for financial and personal independence, to make a profit and to fulfil a market and/or social need • the characteristics of successful business managers and business entrepreneurs and how these characteristics contribute to business success • sources of business opportunity such as innovation, recognising and taking advantage of market opportunities, changing customer needs, research and development, technological development and global markets • the importance of goal setting and decision-making in business • the importance of business concept development • the relationship between business opportunities and business concept development • market research and initial feasibility studies • the contribution that businesses make to the economic and social wellbeing of a nation • the methods by which a culture of business innovation and entrepreneurship may be fostered in a nation, such as government investment in research and development, council grants for new businesses, school-based educational programs in entrepreneurship, and the creation of regional business start-up hubsDefine the following terms: BUSINESS PRODUCTION MARKETING FINANCE INDUSTRIAL BUSINESSES COMMERCIAL BUSINESSES SERVICE BUSINESSES INDUSTRY INNOVATION GLOBAL COMPETITION EFFECTIVENESS DOMESTIC GOODS FOREIGN GOODS OUTPUT PRODUCTIVITY DOWNSIZE EMPOWERMENT GROSS DOMESTIC PRODUCT UNDERGROUND ECONOMY ENTREPRENEUR FRANCHISE FRANCHISOR FRANCHISEE INTRAPRENEUR SOLE PROPRIETORSHIP LIMITED LIABILITY CORPORATION PARTNERSHIP CORPORATION START-UP INVESTOR CHIEF EXECUTIVE OFFICER CHIEF FINANCIAL OFFICERMatch the word to its synonym level B1 CEFR. Use the vocabulary exactly adverb precisely except that aside from exist verb to be real existing adjective real, current Example: Flying cars are not practical with existing technology. existence noun reality Example: The existence of black holes has been confirmed by indirect observation. extraordinary adjective unusual feature noun important part of something Example: The Ramon Crater is a unique feature of the Negev Desert. feedback noun reaction figure noun shape Example: I can’t tell if that figure in the shadows is a man or a woman. figure out verb understand Example: I just can’t figure out how the magician did that amazing trick. financial adjective related to money Example: Her family is having financial problems so they can’t travel overseas this year. finance verb pay for Example: If I can’t get a loan from the bank, I won’t be able to finance a new apartment. finance noun money Example: An expert in finance predicts a global recession. finding/findings noun discoveries; results of a study Example: According to the findings of the police investigation, this is the gun which fired the fatal bullet. flexibility noun willingness to change flexible adjective adjusts easily Example: I’d prefer to meet on Monday morning but I can be flexible depending upon your schedule. flood noun a lot of water flood verb to cover with too much water flu noun type of sickness focus on/upon verb pay attention to Example: You should focus on your schoolwork if you want to improve your grades. focus noun attention People with attention deficit disorder lose focus easily. frequency noun how often frequent adjective very often Example: Hanah is a frequent customer and everyone at the store knows her. fresh adjective new Example: We need some fresh ideas if we’re going to solve this problem. frighten verb scare from preposition position, starting point gain verb make an increase, profit, earn Example: I have nothing to gain by choosing sides so I shall remain neutral. gain noun profit, amount earned generate verb create, make Example: Chat GPT can generate text written in any style you choose. guidance noun help, advice hopeful adjective optimistic, having a positive outlook Example: The farmers are hopeful that we will have rain this winter. hopefully adjective with luck ideal adjective best, most preferable Example: Nuclear power may not be an ideal solution to global warming, but it’s certainly worth considering. illness noun sickness, disease illustrate verb draw pictures illustration noun picture, image Example: Children’s storybooks have colorful illustrations. image noun picture, especially on film or television Example: The mother of the pop singer cried when she first saw her daughter’s image on television. in preposition within, inside, into in terms of regarding Example: That company makes a great product but they’re lacking in terms of customer service. in actual fact in truth Example: The mayor says the city is a safe place to live, but in actual fact the violent crime rate is very high. in connection with about Example: Police arrested four men in connection with the robbery. in that case if that is true Example: Billy Bob: “Traffic could be heavy tomorrow.” Peggy Sue: “In that case, we better leave early.” in the meantime while, during Example: The new computers won’t arrive until next week, but we can keep using the old ones in the meantime. initial adjective first Example: Her initial reaction to that song was negative, but over time she’s come to like it. initially adverb at first instruction noun teaching, order Example: Most new electronic devices come with a set of instructions. intelligence noun smartness Example: Since you have a degree from a good university, I assume you have sufficient intelligence to understand this problem. intelligent adjective smart Example: Joe isn’t very intelligent, but he is a kind person with a warm heart. interest noun attraction Example: Yossi has little interest in politics, whereas his wife goes to all the protests and demonstrations. interest verb to attract Example: Sports don’t really interest me, but my brother is a big basketball fan. introduce verb to show something new Example: Today in class I will introduce the basic concepts of literary analysis. invest verb to put money into something in order to earn money Example: Joe invested in cryptocurrency and lost a lot of money. investor noun one who puts money into something in order to earn money Example: Venture capitalists are investors who put money into risky start-up businesses. investment noun putting money into something in order to earn money Example: Buying real estate in Israel is a very safe investment because the value never goes down. investigate verb research, study Example: The police collected evidence to investigate the murder. investigation noun study Example: The police don’t have a suspect for the murder as the investigation isn’t finished yet. investigator noun detective Example: Detective Schmendrick is the lead investigator for the murder case. just about almost Example: I’m just about done here so I’ll be there shortly. keep on doing verb continue Example: You’re crazy if you keep on doing the same thing and expect different results. kind of type of Example: What kind of dog is that, a poodle? knowledge noun awareness Example: John failed the test due to lack of knowledge of the material. lack verb not having, missing Example: John failed the test due to lack of knowledge of the material. landscape noun the view of the land likely adjective, adverb probably Example: When we learn from our mistakes, we’re not likely to forget. limited adjective restricted Example: We should go to the store today because the sale is for a limited time only. limitation noun restriction little adjective small, not a lot Example: She always tells the truth. I have little reason to doubt her. look at verb see Example: People used to read newspapers on the train. Nowadays they just look at their phones. low adverb to a small amount or level Example: I have to charge my phone because the battery is running low. material noun documents, information Example: We have a lot of material to cover before the end of the semester. meaning noun significance mean verb to have significance or purpose means noun form of, by the use of Example: They communicate by means of radio. measure noun step Example: The teacher took measures to prevent cheating during the test mention verb to say, point out Example: The coach said the team played very well today but didn’t mention any player specifically. miss verb (1) fail to catch (2) wishing to see somebody Examples: (1) The football player kicked the ball but missed the goal. (2) Wow, it’s good to see you! I’ve missed you so much! misunderstand verb understand incorrectly Example: I’m afraid I misunderstood the instructions. Could you repeat them please? more or less approximately, somewhat, to a varying degree Example: This is more or less a religious neighborhood, though there are a few secular families. must modal verb have to naturally adverb as expected, normally nature noun (1) open air (2) character Examples: (1) We like to go hiking in nature reserves. (2) Pit bulls are aggressive by nature.Cryptocurrency regulations in Africa vary significantly across the continent, reflecting different approaches by governments to balance innovation with consumer protection and financial stability. Here's an overview of the regulatory landscape in several key African countries: 1. Nigeria Central Bank Ban: In February 2021, the Central Bank of Nigeria (CBN) banned financial institutions from providing services to crypto exchanges, effectively restricting crypto transactions through traditional banking channels. eNaira: Despite the restrictive stance on cryptocurrencies, Nigeria launched its central bank digital currency (CBDC), the eNaira, in October 2021, aiming to enhance financial inclusion and support the digital economy. 2. South Africa Regulatory Framework: The Financial Sector Conduct Authority (FSCA) has proposed a regulatory framework to classify cryptocurrencies as financial products. This will subject crypto service providers to regulations similar to those governing other financial services. AML/CFT Compliance: Crypto exchanges are required to comply with Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT) regulations. 3. Kenya Regulatory Caution: The Central Bank of Kenya (CBK) has issued warnings about the risks associated with cryptocurrencies but has not imposed an outright ban. Cryptocurrencies are not considered legal tender. Innovation Support: Kenya is known for its innovative financial services sector, including mobile money, which creates a fertile ground for crypto and blockchain adoption despite the cautious regulatory stance. 4. Ghana Regulatory Research: The Bank of Ghana is conducting research into cryptocurrencies and blockchain technology, with a focus on understanding the potential benefits and risks. Sandbox Initiative: Ghana has introduced a regulatory sandbox to encourage innovation in fintech, including blockchain and cryptocurrencies. 5. Uganda Regulatory Oversight: The Bank of Uganda has warned the public about the risks of cryptocurrencies but has not imposed a ban. There is ongoing discussion about developing a regulatory framework. Blockchain Adoption: Uganda is exploring the use of blockchain technology in various sectors, including agriculture and healthcare. 6. Zimbabwe Ban and Reconsideration: The Reserve Bank of Zimbabwe (RBZ) initially banned banks from processing crypto transactions but has since been exploring ways to regulate the industry. Blockchain Task Force: The government has established a blockchain and digital assets task force to study the implications and potential uses of the technology. 7. Tanzania Government Support: In 2021, the Tanzanian government indicated support for adopting blockchain and cryptocurrency technologies, with the central bank working on creating a regulatory framework. Presidential Endorsement: President Samia Suluhu Hassan called on the central bank to prepare for the adoption of cryptocurrencies. Regional Initiatives and Trends Cross-Border Collaboration: Some African countries are exploring regional cooperation to harmonize crypto regulations and promote cross-border fintech solutions. Fintech Hubs: Countries like Nigeria, South Africa, and Kenya are becoming fintech hubs, attracting startups and investment in the blockchain and crypto space. Education and Awareness: Efforts are being made to educate the public and policymakers about cryptocurrencies and blockchain technology to promote informed decision-making. Challenges and Considerations Regulatory Uncertainty: The lack of clear and consistent regulations across the continent poses challenges for businesses and investors. Risk Management: Balancing innovation with risk management, particularly concerning AML/CFT compliance, is a key concern for regulators. Infrastructure and Accessibility: Limited internet access and technological infrastructure can hinder widespread adoption and effective regulation. The regulatory landscape for cryptocurrencies in Africa is dynamic and evolving, with a mix of cautious approaches and supportive measures aimed at harnessing the benefits of blockchain technology while managing associated risks.Make a vocabulary quiz with below.Crisis: a very difficult situation or emergency; “Investors are worried that continuing problems in the stock market might lead to another financial crisis.” Short-staffed: not having enough employees or workers; “We laid off dozens of employees to save money, but now we’re short-staffed and can’t fill orders quickly.” To drive someone nuts: to make someone upset or annoyed; “The autocorrect feature on my mobile phone really drives me nuts.” To arise: to happen or start to develop, especially for problems or situations; “Problems arose for the developers when local residents voted against construction of the new shopping mall.” To moan: to complain about something, especially in a way that bothers other people; “Every Monday morning my colleagues moan about having to come to the office so early.” Optimism: the feeling or belief that good things will happen; “Analysts are expressing optimism that the real estate market will bounce back quickly.” Pessimism: the tendancy or belief that the worst will happen. “Now is not the time for pessimism, we need to believe we can do this or we will fail.” Hurdle: a problem that must be overcome or dealt with in order to reach a goal or do something; “Lack of capital is a major hurdle for many young entrepreneurs with good business ideas.” © 2013 All rights reserved: www.businessenglishpod.com 2 To give up: to stop trying to do or achieve something; “After being rejected by over a dozen universities, Roger gave up on his plans to study for an MBA.” To keep your eye on the prize: to stay motivated and focused on your final goal or reward; “Okay folks, I know things have been really busy, but let’s keep our eye on the prize and we’ll get this done before Christmas.” Down the road: in the future; “Sales our good in our retail outlets, but 10 years down the road we’re going to have to be more competitive in the online market.” To overcome: to deal with a problem successfully; “You are going to have to overcome your lack of confidence if you want to be a good salesman.” Decisiveness: having the ability to make decisions and act firmly. “Decisiveness is a quality we look for in new managers.” Bumpy: we can use “bumpy” to describe a road or process that has many problems; “We had a pretty bumpy start-up phase, but we finally managed to turn a profit in our fifth year of operations.” To display: to show a feeling, emotion, or characteristic; “David displayed tremendous preparation and diplomacy during the negotiations.” On the fence: someone who is “on the fence” is having difficulty making a decision or taking a position; “While the executives support expansion wholeheartedly, the shareholders are still on the fence about it.” All-in: in poker, if you are “all-in” you put all your money on one bet, but we can use this expression more generally to say you are completely committed to something, especially a plan; “This sounds like a good idea, but before I go all-in I need to know more about the project partners.” To have what it takes: to have the ability or intelligence to do something; “I thought I’d enjoy law, but after a few years as a junior lawyer I realized I don’t really have what it takes.A bank is a financial institution or organization where we save, borrow money and other valuable items such as Jewelry and documents. Banking is the business of operating a bank. THE FOLLOWING ARE THE THREE MAJOR TYPES OF BANKS IN NIGERIA. THESE ARE: 1. The Central Bank of Nigeria (CBN): This bank is fully owned by the Federal Government. It is also known as banker’s bank or the apex bank(the highest bank)because its controls and supervises the other banks. It controls the minting (printing) of money. 2. Commercial banks: They are either owned by private individuals or jointly owned by government and private businessmen and women. It helps people to save money and also give loans to customers to start up business. The three main accounts that commercial banks operate are (1) Savings account (ii) Current account (iii) Fixed deposit account. 3. Merchant banks: These are banks that mainly give out loans to banks and to people who wish to build big companies or engage in large scale business. They receive interest on such loan. They also accept deposits (money) from people who wish to save for a long period of time. This is called a fixed deposit. EXAMPLES OF SOME COMMERCIAL BANKS ARE AS FOLLOWS: 1. First Bank of Nigeria PLC. 2. Union Bank 3. United Bank for Africa 4. Access Bank 5. Zenith Bank 6. Stanbic IBTC Bank 7. Diamond Bank. The following are the uses of banks: 1. To help us keep our money safe. 2. It makes it easy and safe for people to make payments to the people. 3. Banks help people to send or transfer their money from one area to another, e.g Western Union Money Transfer. 4. They give loans to people.