Sec+ - Study #3

Question 1

is a technique used to hide real data by replacing it with fake but realistic data. This allows organizations to use the data for testing, training, or analysis without exposing sensitive information.

Answer 1

Data Masking

Question 2

is a cybersecurity solution that monitors computers, laptops, and other endpoints for suspicious activity. It detects, investigates, and responds to threats in real time—helping security teams stop attacks like malware or ransomware before they spread.

Answer 2

Endpoint Detection and Response (EDR)

Question 3

is a data protection method that replaces sensitive information—like credit card numbers or Social Security numbers—with a random string of characters

Answer 3

Tokenization

Question 4

involves delegating responsibility for specific tasks or projects, ensuring there is a clear point of accountability for planning, execution, and follow-up

Answer 4

Ownership

Question 5

primarily addresses the prevention of email spoofing by allowing the receiving email server to check that an email claimed to have come from a specific domain was indeed authorized by the owner of that domain

Answer 5

DKIM (DomainKeys Identified Mail)

Question 6

ensure continuous operation by having backup components ready to take over in case of a failure, unlike single points of failure which can lead to complete system shutdowns

Answer 6

Redundant systems

Question 7

During a vulnerability scan, what activity is MOST critical to ensuring the effectiveness of the scan?

Answer 7

Selecting the correct scan type and depth

Question 8

Implementing firewalls primarily serves as a __ control. This is because firewalls are hardware or software-based systems designed to filter incoming and outgoing network traffic based on a set of security rules

Answer 8

technical

Question 9

The __ in change management is when proposed changes are tried out in a controlled environment to verify that they work correctly, don’t introduce new problems, and meet performance and security requirements before being fully deployed.

Answer 9

Test Phase

Question 10

In the context of identity and access management, which of the following best ensures that users have access only to the resources they’ve been explicitly granted?

Answer 10

RBAC

Question 11

is the best technique for securing customer payment information within databases, as it replaces sensitive data elements with non-sensitive equivalents, which can be safely stored and processed without exposing the original data

Answer 11

Tokenization

Question 12

is the practice of hiding information inside something else—like embedding a secret message within an image, audio file, or text

Answer 12

Steganography

Question 13

Signs of __ include unusual network traffic, system slowdowns, unexpected crashes, unauthorized file changes, or programs running without user initiation.

Answer 13

malicious code

Question 14

The attacker sends requests to third-party servers using the victim’s IP as the source. Those servers then send responses to the victim, amplifying the traffic and hiding the attacker’s identity.

Answer 14

Reflected DDOS

Question 15

Which agreement type is best suited for establishing the general terms and conditions between an organization and its vendors, which will govern future transactions and services?

Answer 15

The Master Service Agreement (MSA)

Question 16

Blocking websites with low reputation scores is an effective way to protect against __ , as these sites are often newly created or known to host malicious content

Answer 16

phishing attacks

Question 17

The ___ feature of Public Key Infrastructure (PKI) is utilized to ensure that only the intended recipients can read the content of emails

Answer 17

Public Key

Question 18

How does the CVE aid in vulnerability management?

Answer 18

By offering a unique identifier for publicly known vulnerabilities.

Question 19

a hardware-based security chip built into many modern laptops and desktops. It securely stores cryptographic keys, passwords, and certificates, and it’s commonly used for:

Answer 19

TPM

Question 20

The technology that offers robust key storage and cryptographic operations for cloud applications

Answer 20

Hardware Security Module (HSM)

Question 21

are security measures designed to protect the physical environment—the buildings, equipment, and personnel—from unauthorized access or damage.

Answer 21

Physical controls

Question 22

use hardware, software, or firmware to enforce security policies and protect information systems.

Answer 22

Technical controls

Question 23

is a type of malicious software designed to hide its presence and give an attacker unauthorized, privileged access to a computer or network.

Answer 23

Rootkit

Question 24

a type of malicious software that disguises itself as a legitimate program to trick users into installing or running it.

Answer 24

Trojan

Question 25

Involve processes, procedures, and human actions that help manage and enforce security.

Answer 25

Operational control

Question 26

are notifications generated by security systems (like an Intrusion Detection System – IDS, or Intrusion Prevention System – IPS) when network traffic or system activity matches a known pattern of malicious behavior.

Answer 26

Signature-based alerts

Question 27

is a network architecture approach that separates the network control plane from the data plane, allowing centralized management of network traffic through software.

Answer 27

Software-Defined Networking (SDN)

Question 28

a logical segmentation of a physical network that groups devices into separate broadcast domains, even if they are connected to the same physical switch. Ex. A company has one physical office network but wants to separate departments for security and traffic management.

Answer 28

VLAN

Question 29

a software-defined approach to managing wide area networks. It uses centralized control software to securely and intelligently route traffic across multiple types of connections (like MPLS, broadband, LTE) based on business policies, application needs, and network conditions. Ex. ___ automatically routes video calls over the fastest connection and backup data over cheaper links. If one link fails, ___ switches traffic to another connection without interruption.

Answer 29

SD-WAN

Question 30

protocol that secures IP traffic by encrypting and authenticating it, often used for VPNs. Ex. A company wants to connect its headquarters network to a branch office network over the public Internet securely. ___ creates a VPN tunnel between the two offices. All data sent between HQ and the branch is encrypted and authenticated

Answer 30

IPsec

Question 31

is a file-level encryption feature in Windows that allows users to encrypt individual files and folders on a disk so that only authorized users can access them. company employee stores confidential reports on their laptop. Using __, the reports are encrypted.

Answer 31

EFS (Encrypting File System)

Question 32

a malicious piece of code that executes when specific conditions are met, such as a particular date, time, or action by the user. Unlike viruses or worms, it does not spread by itself. Ex. A disgruntled employee writes a program that deletes the company’s database if they are terminated. The code remains dormant until the trigger condition (employee termination) occurs.

Answer 32

Logic Bomb

Question 33

a flaw in a system or application that occurs when two or more processes access shared resources at the same time, and the system’s outcome depends on the sequence or timing of execution. Ex. An online banking application allows two simultaneous withdrawals from the same account. If both transactions happen at nearly the same time, the account could be overdrawn due to a __

Answer 33

Race Condition