Free CS0-002 Exam Braindumps

- (Exam Topic 3)
An organization has the following policy statements:
• AlI emails entering or leaving the organization will be subject to inspection for malware, policy violations, and unauthorized coolant.
•AM network activity will be logged and monitored.
• Confidential data will be tagged and tracked
• Confidential data must never be transmitted in an unencrypted form.
• Confidential data must never be stored on an unencrypted mobile device. Which of the following is the organization enforcing?

1. A. Acceptable use policy
2. B. Data privacy policy
3. C. Encryption policy
4. D. Data management, policy

Correct Answer: B

- (Exam Topic 1)
A security analyst reviews the following aggregated output from an Nmap scan and the border firewall ACL:

Which of the following should the analyst reconfigure to BEST reduce organizational risk while maintaining current functionality?

1. A. PC1
2. B. PC2
3. C. Server1
4. D. Server2
5. E. Firewall

Correct Answer: B

- (Exam Topic 2)
Understanding attack vectors and integrating intelligence sources are important components of:

1. A. proactive threat hunting
2. B. risk management compliance.
3. C. a vulnerability management plan.
4. D. an incident response plan.

Correct Answer: C
threat hunting activities.
* 1. Establishing a hypothesis,
* 2. Profile threat actors/activities,
* 3. Threat hunting tactics,
* 4. Reducing attack surface,
* 5. Bundle critical systems/assets into groups/protected zones,
* 6. Attack vectors understood, assessed and addressed
* 7. Integrated intelligence
* 8. Improving detection capabilities.

- (Exam Topic 1)
A human resources employee sends out a mass email to all employees that contains their personnel records. A security analyst is called in to address the concern of the human resources director on how to prevent this from happening in the future.
Which of the following would be the BEST solution to recommend to the director?

1. A. Install a data loss prevention system, and train human resources employees on its us
2. B. Provide PII training to all employees at the compan
3. C. Encrypt PII information.
4. D. Enforce encryption on all emails sent within the compan
5. E. Create a PII program and policy on how to handle dat
6. F. Train all human resources employees.
7. G. Train all employee
8. H. Encrypt data sent on the company networ
9. I. Bring in privacy personnel to present a plan on how PII should be handled.
10. J. Install specific equipment to create a human resources policy that protects PII dat
11. K. Train company employees on how to handle PII dat
12. L. Outsource all PII to another compan
13. M. Send the human resources director to training for PII handling.

Correct Answer: A

- (Exam Topic 1)
A threat feed notes malicious actors have been infiltrating companies and exfiltration data to a specific set of domains Management at an organization wants to know if it is a victim Which of the following should the security analyst recommend to identity this behavior without alerting any potential malicious actors?

1. A. Create an IPS rule to block these domains and trigger an alert within the SIEM tool when these domains are requested
2. B. Add the domains to a DNS sinkhole and create an alert m the SIEM toot when the domains are queried
3. C. Look up the IP addresses for these domains and search firewall logs for any traffic being sent to those IPs over port 443
4. D. Query DNS logs with a SIEM tool for any hosts requesting the malicious domains and create alerts based on this information

Correct Answer: D