In developing a new computing lifecycle process for a large corporation, the security team is
developing the process for decommissioning computing equipment. In order to reduce the
potential for data leakage, which of the following should the team consider? (Select TWO).

A Security Manager is part of a team selecting web conferencing systems for internal use. The
system will only be used for internal employee collaboration. Which of the following are the MAIN
concerns of the security manager? (Select THREE).

The security administrator has just installed an active\passive cluster of two firewalls for enterprise
perimeter defense of the corporate network. Stateful firewall inspection is being used in the firewall
implementation. There have been numerous reports of dropped connections with external clients.
Which of the following is MOST likely the cause of this problem?

Company XYZ is in negotiations to acquire Company ABC for $1.2millon. Due diligence activities
have uncovered systemic security issues in the flagship product of Company ABC. It has been
established that a complete product rewrite would be needed with average estimates indicating a
cost of $1.6millon. Which of the following approaches should the risk manager of Company XYZ
recommend?

Which of the following are components defined within an Enterprise Security Architecture
Framework? (Select THREE).

An audit at a popular on-line shopping site reveals that a flaw in the website allows customers to
purchase goods at a discounted rate. To improve security the Chief Information Security Officer
(CISO) has requested that the web based shopping cart application undergo testing to validate
user input in both free form text fields and drop down boxes.
Which of the following is the BEST combination of tools and / or methods to use?