Which of the following is the BEST approach to implemen…
A small company has a website that provides online customer support. The company requires an account
recovery process so that customers who forget their passwords can regain access.
Which of the following is the BEST approach to implement this process?
Which of the following is the BEST approach to implemen…
An insurance company requires an account recovery process so that information created by an employee can
be accessed after that employee is no longer with the firm. Which of the following is the BEST approach to
implement this process?
Which of the following account management practices doe…
The IT department has setup a website with a series of questions to allow end users to reset their own
accounts. Which of the following account management practices does this help?
Which of the following should be done before resetting …
Which of the following should be done before resetting a user’s password due to expiration?
Which of the following can the security Administrator i…
A security administrator is concerned about the strength of user’s passwords. The company does not want to
implement a password complexity policy. Which of the following can the security Administrator implement to
mitigate the risk of an online password attack against users with weak passwords?
Which of the following BEST supports this reasoning?
Sara, a security manager, has decided to force expiration of all company passwords by the close of business
day. Which of the following BEST supports this reasoning?
Which of the following would BEST mitigate this risk?
The system administrator notices that many employees are using passwords that can be easily guessed or are
susceptible to brute force attacks.
Which of the following would BEST mitigate this risk?
Which of the following types of password controls would…
An internal auditing team would like to strengthen the password policy to support special characters. Which of
the following types of password controls would achieve this goal?
Which of the following types of user account options we…
After a recent internal audit, the security administrator was tasked to ensure that all credentials must be
changed within 90 days, cannot be repeated, and cannot contain any dictionary words or patterns. All
credentials will remain enabled regardless of the number of attempts made. Which of the following types of
user account options were enforced? (Choose two.)
Which of the following could have prevented this from h…
When Ann an employee returns to work and logs into her workstation she notices that, several desktopconfiguration settings have changed. Upon a review of the CCTV logs, it is determined that someone logged
into Ann’s workstation. Which of the following could have prevented this from happening?