During a trial for possession of illegal content, a defence attorney argues that several of the files on the forensic image may have been tampered with. How can a
technician BEST disprove this argument?

During a recent audit, it was discovered that the employee who deploys patches also approves the patches. The audit found there is no documentation supporting
the patch management process, and there is no formal vetting of installed patches. Which of the following controls should be implemented to mitigate this risk?
(Select TWO).

Multi-function devices are being deployed in various departments. All departments will be able to copy, print and scan to file. Some departments will be authorized
to use their devices to fax and email, while other departments will not be authorized to use those functions on their devices. Which of the following is the MOST
important mitigation technique to avoid an incident?

Which of the following should be used to implement voice encryption?

Which of the following types of attacks are MOST likely to be successful when using fuzzing against an executable program? (Select TWO).

A security administrator has detected the following pattern in a TCP packer: URG=1, ACK=1, PSH=1, RST=1, SYN=1, FIN=1. Which of the following attacks is this
an example of?

A company has begun construction on a new building. The construction crews have noticed that valuable materials have been stolen from the site. Which of the
following preventative controls should be used by the Chief Security Officer (CSO) to prevent future theft?

The network engineer for an organization intends to use certificate-based 802.1X authentication on a network. The engineer’s organization has an existing PKI that
is used to issue server and user certificates. The PKI is currently not configured to support the issuance of 802.1X certificates. Which of the following represents an
item the engineer MUST configure?

Which of the following network design components would assist in separating network traffic based on the logical location of users?

A server administrator is investigating a breach and determines that an attacker modified the application log to obfuscate the attack vector. During the lessons
learned activity, the facilitator asks for a mitigation response to protect the integrity of the logs should a similar attack occur. Which of the following mitigations would
be MOST appropriate to fulfill the requirement?