نشامى

وضع الدراسة · CompTIA Security+ Cybersecurity Proficiency: Advanced Threat & Risk Management Assessment

بنك الأسئلة

CompTIA Security+ Cybersecurity Proficiency: Advanced Threat & Risk Management Assessment

ملخص الإنجاز0/25 · 0%

الأسئلة وإجاباتها

25 questionsBank.questionsCount
1

What is the primary objective of implementing a Security Information and Event Management (SIEM) system in a cybersecurity infrastructure?

  • أTo automate security policy updates.
  • To provide real-time analysis of security alerts.
  • تTo manage identity and access control.
  • ثTo test security patches before deployment.
2

When conducting a risk assessment, which factor is considered the most critical to evaluate the overall risk level?

  • Likelihood of occurrence.
  • بMagnitude of systems.
  • تEmployee satisfaction levels.
  • ثCost of security technologies.
3

What is the primary purpose of implementing a demilitarized zone (DMZ) in a network architecture?

  • To host publicly accessible services.
  • بTo isolate internal traffic.
  • تTo encrypt all incoming traffic.
  • ثTo manage bandwidth effectively.
4

In advanced threat management, what is the main function of threat intelligence platforms (TIPs)?

  • أTo store historical attack data.
  • To aggregate and analyze threat data from various sources.
  • تTo configure network devices remotely.
  • ثTo control access to sensitive data.
5

Which protocol is commonly used to provide encrypted communications at the transport layer?

  • أHTTP
  • Transport Layer Security (TLS).
  • تSMTP
  • ثFTP
6

What is the best description of a zero-day vulnerability?

  • أA vulnerability that has been patched but not documented.
  • A vulnerability that is exploited before the vendor is aware of it.
  • تA vulnerability that affects zero components of the network.
  • ثA vulnerability known for more than a year but not fixed.
7

Which of the following is the primary reason organizations conduct penetration testing?

  • أTo meet legal compliance requirements.
  • To identify and remediate vulnerabilities before they can be exploited.
  • تTo enhance employee cybersecurity training.
  • ثTo develop new security protocols.
8

What is a crucial element in the definition of a good backdoor created by an attacker?

  • أEasy to discover for maintenance.
  • Operates quietly without detection.
  • تLeaves visible logs for tracking.
  • ثChanges frequently to avoid capture.
9

Which cryptographic attack involves the attacker trying every possible key until the correct one is found?

  • Brute force attack.
  • بMan-in-the-middle attack.
  • تPhishing attack.
  • ثSQL injection attack.
10

Which of the following security practices involves inspecting code to find vulnerabilities before the software is deployed?

  • Static code analysis.
  • بDynamic analysis.
  • تNetwork monitoring.
  • ثPenetration testing.