A completely new class of web-based vulnerabilities has been discovered. Claims have been made that all
common web-based development frameworks are susceptible to attack. Proof-of- concept details have
emerged on the Internet. A security advisor within a company has been asked to provide recommendations onhow to respond quickly to these vulnerabilities. Which of the following BEST describes how the security advisor
should respond?

The Chief Information Security Officer (CISO) at a company knows that many users store business documents
on public cloud-based storage, and realizes this is a risk to the company. In response, the CISO implements a
mandatory training course in which all employees are instructed on the proper use of cloud-based storage.
Which of the following risk strategies did the CISO implement?

The security administrator finds unauthorized tables and records, which were not present before, on a Linux
database server. The database server communicates only with one web server, which connects to the
database server via an account with SELECT only privileges. Web server logs show the following: 90.76.165.40
– [08/Mar/2014:10:54:04] “GET calendar.php?create%20table%20hidden HTTP/1.1” 200 5724 90.76.165.40 –
[08/Mar/2014:10:54:05] “GET ../../../root/.bash_history HTTP/1.1” 200
5724 90.76.165.40 – [08/Mar/2014:10:54:04] “GET index.php?user<;scrip>;Creat<;/scrip>; HTTP/1.1” 200
5724 The security administrator also inspects the following file system locations on the database server using
the command `ls -al /root’ drwxrwxrwx 11 root root 4096 Sep 28 22:45 .
drwxr-xr-x 25 root root 4096 Mar 8 09:30 ..
-rws—— 25 root root 4096 Mar 8 09:30 .bash_history -rw——- 25 root root 4096 Mar 8 09:30 .bash_history –
rw——- 25 root root 4096 Mar 8 09:30 .profile
-rw——- 25 root root 4096 Mar 8 09:30 .ssh
Which of the following attacks was used to compromise the database server and what can the security
administrator implement to detect such attacks in the future? (Select TWO).

Ann, a systems engineer, is working to identify an unknown node on the corporate network. To begin her
investigative work, she runs the following nmap command string:
user@hostname:~$ sudo nmap O 192.168.1.54
Based on the output, nmap is unable to identify the OS running on the node, but the following ports are open on
the device:
TCP/22 TCP/111 TCP/512-514 TCP/2049 TCP/32778
Based on this information, which of the following operating systems is MOST likely running on the unknown
node?

Which of the following provides the BEST risk calculation methodology?

Which of the following provides the BEST risk calculation methodology?

A security manager for a service provider has approved two vendors for connections to the service provider
backbone. One vendor will be providing authentication services for its payment card service, and the other
vendor will be providing maintenance to the service provider infrastructure sites. Which of the following
business agreements is MOST relevant to the vendors and service provider’s relationship?

Due to a new regulatory requirement, ABC Company must now encrypt all WAN transmissions. When speakingwith the network administrator, the security administrator learns that the existing routers have the minimum
processing power to do the required level of encryption. Which of the following solutions minimizes the
performance impact on the router?

An administrator wants to enable policy based flexible mandatory access controls on an opensource OS to prevent abnormal application modifications or executions. Which of the following would BEST
accomplish this?

A security administrator was recently hired in a start-up company to represent the interest of security and to
assist the network team in improving security in the company. The programmers are not on good terms with the
security team and do not want to be distracted with security issues while they are working on a major project.
Which of the following is the BEST time to make them address security issues in the project?