CS0-001 Exam Question 271
The Chief Information Security Officer (CISO) asks a security analyst to write a new SIEM search rule to determine if any credit card numbers are being written to log files. The CISO and security analyst suspect the following log snippet contains real customer card data.
Which of the following expression would find potential credit card number in a format that matches the log snippet?
Which of the following expression would find potential credit card number in a format that matches the log snippet?
CS0-001 Exam Question 272
A nuclear facility manager determined the need to monitor utilization of water within the facility. A startup
company just announced a state-of-the-art solution to address the need for integrating the business and
ICS network. The solution requires a very small agent to be installed on the ICS equipment. Which of the
following is the MOST important security control for the manager to invest in to protect the facility?
company just announced a state-of-the-art solution to address the need for integrating the business and
ICS network. The solution requires a very small agent to be installed on the ICS equipment. Which of the
following is the MOST important security control for the manager to invest in to protect the facility?
CS0-001 Exam Question 273
Organizational policies require vulnerability remediation on severity 7 or greater within one week. Anything
with a severity less than 7 must be remediated within 30 days. The organization also requires security
teams to investigate the details of a vulnerability before performing any remediation. If the investigation
determines the finding is a false positive, no remediation is performed and the vulnerability scanner
configuration is updates to omit the false positive from future scans:
The organization has three Apache web servers:
The results of a recent vulnerability scan are shown below:
The team performs some investigation and finds a statement from Apache:
Which of the following actions should the security team perform?
with a severity less than 7 must be remediated within 30 days. The organization also requires security
teams to investigate the details of a vulnerability before performing any remediation. If the investigation
determines the finding is a false positive, no remediation is performed and the vulnerability scanner
configuration is updates to omit the false positive from future scans:
The organization has three Apache web servers:
The results of a recent vulnerability scan are shown below:
The team performs some investigation and finds a statement from Apache:
Which of the following actions should the security team perform?
CS0-001 Exam Question 274
An organization is requesting the development of a disaster recovery plan. The organization has grown and so has its infrastructure. Documentation, policies, and procedures do not exist. Which of the following steps should be taken to assist in the development of the disaster recovery plan?
CS0-001 Exam Question 275
A software assurance lab is performing a dynamic assessment on an application by automatically generating and inputting different, random data sets to attempt to cause an error/failure condition. Which of the following software assessment capabilities is the lab performing AND during which phase of the SDLC should this occur? (Select two.)