An attacker browses a company's online job board attempting to find any relevant information regarding the
technologies the company uses. Which of the following BEST describes this social engineering technique?


A. Hoax
B. Reconnaissance
C. Impersonation
D. Pretexting

A security engineer must deploy two wireless routers in an office suite. Other tenants in the office building
should not be able to connect to this wireless network. Which of the following protocols should the engineer
implement to ensure the STRONGEST encryption?


A. WPS
B. WPA2
C. WAP
D. HTTPS

An analyst is reviewing logs associated with an attack. The logs indicate an attacker downloaded a malicious
file that was quarantined by the AV solution. The attacker utilized a local non-administrative account to restore
the malicious file to a new location. The file was then used by another process to execute a payload. Which of
the following attacks did the analyst observe?


A. Privilege escalation
B. Request forgeries
C. Injection
D. Replay attack

Which of the following control types fixes a previously identified issue and mitigates a risk?


A. Detective
B. Corrective
C. Preventative
D. Finalized

The Chief Information Security Officer (CISO) of a bank recently updated the incident response policy. The
CISO is concerned that members of the incident response team do not understand their roles. The bank wants
to test the policy but with the least amount of resources or impact. Which of the following BEST meets the
requirements?


A. Warm site failover
B. Tabletop walk-through
C. Parallel path testing
D. Full outage simulation

Which of the following is used to ensure that evidence is admissible in legal proceedings when it is collected
and provided to the authorities?


A. Chain of custody
B. Legal hold
C. Event log
D. Artifacts

An organization would like to give remote workers the ability to use applications hosted inside the corporate
network. Users will be allowed to use their personal computers, or they will be provided organization assets.
Either way, no data or applications will be installed locally on any user systems. Which of the following mobile
solutions would accomplish these goals?


A. VDI
B. MDM
C. COPE
D. UTM

An attacker has determined the best way to impact operations is to infiltrate third-party software vendors. Which
of the following vectors is being exploited?


A. Social media
B. Cloud
C. Supply chain
D. Social Engineering

A user reports falling for a phishing email to an analyst. Which of the following system logs would the analyst
check FIRST?


A. DNS
B. Message gateway
C. Network
D. Authentication

Which of the following prevents an employee from seeing a colleague who is visiting an inappropriate website?


A. Job rotation policy
B. NDA
C. AUP
D. Separation of duties policy