Free CS0-002 Exam Braindumps

- (Exam Topic 2)
Employees of a large financial company are continuously being Infected by strands of malware that are not
detected by EDR tools. When of the following Is the BEST security control to implement to reduce corporate risk while allowing employees to exchange files at client sites?

1. A. MFA on the workstations
2. B. Additional host firewall rules
3. C. VDI environment
4. D. Hard drive encryption
5. E. Network access control
6. F. Network segmentation

Correct Answer: C

- (Exam Topic 2)
A company’s data is still being exfiltered to business competitors after the implementation of a DLP solution. Which of the following is the most likely reason why the data is still being compromised?

1. A. Printed reports from the database contain sensitive information
2. B. DRM must be implemented with the DLP solution
3. C. Users are not labeling the appropriate data sets
4. D. DLP solutions are only effective when they are implemented with disk encryption

Correct Answer: B

- (Exam Topic 2)
A company wants to reduce the cost of deploying servers to support increased network growth. The company is currently unable to keep up with the demand, so it wants to outsource the infrastructure to a cloud-based solution.
Which of the following is the GREATEST threat for the company to consider when outsourcing its infrastructure?

1. A. The cloud service provider is unable to provide sufficient logging and monitoring.
2. B. The cloud service provider is unable to issue sufficient documentation for configurations.
3. C. The cloud service provider conducts a system backup each weekend and once a week during peak business times.
4. D. The cloud service provider has an SLA for system uptime that is lower than 99 9%.

Correct Answer: B

- (Exam Topic 3)
A security analyst has received a report that servers are no longer able to connect to the network. After many hours of troubleshooting, the analyst determines a Group Policy Object is responsible for the network connectivity Issues. Which of the following solutions should the security analyst recommend to prevent an interruption of service in the future?

1. A. Cl/CD pipeline
2. B. Impact analysis and reporting
3. C. Appropriate network segmentation
4. D. Change management process

Correct Answer: D

- (Exam Topic 1)
A security analyst, who is working for a company that utilizes Linux servers, receives the following results from a vulnerability scan:

Which of the following is MOST likely a false positive?

1. A. ICMP timestamp request remote date disclosure
2. B. Windows SMB service enumeration via \srvsvc
3. C. Anonymous FTP enabled
4. D. Unsupported web server detection

Correct Answer: B