As part of a security compliance assessment, an auditor performs automated vulnerability scans. In addition,
which of the following should the auditor do to complete the assessment?


A. User behavior analysis
B. Packet captures
C. Configuration reviews
D. Log analysis

Which of the following secure coding techniques makes compromised code more difficult for hackers to use?


A. Obfuscation
B. Normalization
C. Execution
D. Reuse

A security proposal was set up to track requests for remote access by creating a baseline of the users'
common sign-in properties. When a baseline deviation is detected, an MFA challenge will be triggered. Which
of the following should be configured in order to deploy the proposal?


A. Context-aware authentication
B. Simultaneous authentication of equals
C. Extensive authentication protocol
D. Agentless network access control

An employee received a word processing file that was delivered as an email attachment. The subject line and
email content enticed the employee to open the attachment. Which of the following attack vectors BEST
matches this malware?


A. Embedded Python code
B. Macro-enabled file
C. Bash scripting
D. Credential-harvesting website

Which of the following is an example of transference of risk?


A. Purchasing insurance
B. Patching vulnerable servers
C. Retiring outdated applications
D. Application owner risk sign-off

Which of the following documents provides expectations at a technical level for quality, availability, and
responsibilities?


A. EOL
B. SLA
C. MOU
D. EOSL

DDoS attacks are causing an overload on the cluster of cloud servers. A security architect is researching
alternatives to make the cloud environment respond to load fluctuation in a cost-effective way. Which of the
following options BEST fulfills the architect's requirements?


A. An orchestration solution that can adjust scalability of cloud assets
B. Use of multipath by adding more connections to cloud storage
C. Cloud assets replicated on geographically distributed regions
D. An on-site backup that is displayed and only used when the load increases

Which of the following is a risk that is specifically associated with hosting applications in the public cloud?


A. Unsecured root accounts
B. Zero-day
C. Shared tenancy
D. Insider threat

The board of directors at a company contracted with an insurance firm to limit the organization's liability. Which
of the following risk management practices does this BEST describe?


A. Transference
B. Avoidance
C. Mitigation
D. Acknowledgement

The Chief Information Security Officer wants to prevent exfiltration of sensitive information from employee cell
phones when using public USB power charging stations. Which of the following would be the BEST solution to
implement?


A. DLP
B. USB data blocker
C. USB OTG
D. Disabling USB ports