CS0-002 Exam Question 206

A security engineer is reviewing security products that identify malicious actions by users as part of a company's insider threat program. Which of the following is the MOST appropriate product category for this purpose?
  • CS0-002 Exam Question 207

    An organisation is assessing risks so it can prioritize its mitigation actions. Following are the risks and their probability and impact:

    Which of the following is the order of priority for risk mitigation from highest to lowest?
  • CS0-002 Exam Question 208

    A cybersecurity analyst is retained by a firm for an open investigation.
    Upon arrival, the cybersecurity analyst reviews several security logs.
    Given the following snippet of code:

    Which of the following combinations BEST describes the situation and recommendations to be made for this situation?
  • CS0-002 Exam Question 209

    While investigating reports or issues with a web server, a security analyst attempts to log in remotely and recedes the following message:

    The analyst accesses the server console, and the following console messages are displayed:

    The analyst is also unable to log in on the console. While reviewing network captures for the server, the analyst sees many packets with the following signature:

    Which of the following is the BEST step for the analyst to lake next in this situation?
  • CS0-002 Exam Question 210

    An organization has a policy prohibiting remote administration of servers where web services are running.
    One of the Nmap scans is shown here:

    Given the organization's policy, which of the following services should be disabled on this server?