Which of the following is applicable to a publicly held company concerned about information handling and storage requirement specific to the financial reporting?

A. Privacy Act of 1974

B. Clinger-Cohan Act of 1996

C. Sarbanes-Oxley (SOX) Act of 2002

D. International Organization for Standardization (ISO) 27001

Which of the following techniques is MOST useful when dealing with Advanced persistent Threat (APT) intrusions on live virtualized environments?

A. Antivirus operations

B. Reverse engineering

C. Memory forensics

D. Logfile analysis

Which of the following is BEST suited for exchanging authentication and authorization messages in a multi-party decentralized environment?

A. Lightweight Directory Access Protocol (LDAP)

B. Security Assertion Markup Language (SAML)

C. Internet Mail Access Protocol

D. Transport Layer Security (TLS)

What can happen when an Intrusion Detection System (IDS) is installed inside a firewall-protected internal network?

A. The IDS can detect failed administrator logon attempts from servers.

B. The IDS can increase the number of packets to analyze.

C. The firewall can increase the number of packets to analyze.

D. The firewall can detect failed administrator login attempts from servers

A user has infected a computer with malware by connecting a Universal Serial Bus (USB) storage device.

Which of the following is MOST effective to mitigate future infections?

A. Develop a written organizational policy prohibiting unauthorized USB devices

B. Train users on the dangers of transferring data in USB devices

C. Implement centralized technical control of USB port connections

D. Encrypt removable USB devices containing data at rest

The goal of a Business Continuity Plan (BCP) training and awareness program is to

A. enhance the skills required to create, maintain, and execute the plan.

B. provide for a high level of recovery in case of disaster.

C. describe the recovery organization to new employees.

D. provide each recovery team with checklists and procedures.

Including a Trusted Platform Module (TPM) in the design of a computer system is an example of a technique to what?

A. Interface with the Public Key Infrastructure (PKI)

B. Improve the quality of security software

C. Prevent Denial of Service (DoS) attacks

D. Establish a secure initial state

Which one of the following is a fundamental objective in handling an incident?

A. To restore control of the affected systems

B. To confiscate the suspect's computers

C. To prosecute the attacker

D. To perform full backups of the system

Which of the following would an information security professional use to recognize changes to content, particularly unauthorized changes?

A. File Integrity Checker

B. Security information and event management (SIEM) system

C. Audit Logs

D. Intrusion detection system (IDS)

Wi-Fi Protected Access 2 (WPA2) is a security protocol designed with which of the following security feature?

A. Encryption control

B. Malware attack protection

C. Data availability

D. Replay attack protection