1. A company has implemented WPA2, a 20-character minimum for the WiFi passphrase, and a new WiFi passphrase every 30 days, and has disabled SSIDbroadcast on all wireless access points. Which of the following is the company trying to mitigate?

A) Forced deauthentication
B) SSL pinning
C) Downgrade attacks
D) Rainbow tables



2. An analyst has received unusual alerts on the SIEM dashboard. The analyst wants to get payloads that the hackers are sending toward the target systems withoutimpacting the business operation. Which of the following should the analyst implement?

A) Virtualization
B) Sandboxing
C) Jump box
D) Honeypot



3. Which of the following is MOST effective for correlation analysis by log for threat management?

A) SIEM
B) IPS
C) PCAP
D) SCAP



4. Due to new regulations, a company has decided to institute an organizational vulnerability management program and assign the function to the security team.Which of the following frameworks would BEST support the program? (Select two.)(Select 2answers)

A) ITIL
B) ISO 27000 series
C) OWASP
D) COBIT
E) NIST


5. Policy allows scanning of vulnerabilities during production hours, but production servers have been crashing lately due to unauthorized scans performed by juniortechnicians. Which of the following is the BEST solution to avoid production server downtime due to these types of scans?

A) Scan only as required for regulatory compliance.
B) Configure daily-automated detailed vulnerability reports.
C) Transition from centralized to agent-based scans.
D) Implement sandboxing to analyze the results of each scan.
E) Require vulnerability scans be performed by trained personnel.