A database is hosting information assets with a computed CIA aggregate value of high. The

database is located within a secured network zone where there is flow control between the client
and datacenter networks. Which of the following is the MOST likely threat?

An organization recently upgraded its wireless infrastructure to support WPA2 and requires all
clients to use this method. After the upgrade, several critical wireless clients fail to connect
because they are only WEP compliant. For the foreseeable future, none of the affected clients
have an upgrade path to put them into compliance with the WPA2 requirement. Which of the
following provides the MOST secure method of integrating the non-compliant clients into the
network?

The Chief Information Security Officer (CISO) is researching ways to reduce the risk associated
with administrative access of six IT staff members while enforcing separation of duties. In the case
where an IT staff member is absent, each staff member should be able to perform all the
necessary duties of their IT co-workers. Which of the following policies should the CISO implement
to reduce the risk?

A company has a primary DNS server at address 192.168.10.53 and a secondary server at
192.168.20.53. An administrator wants to secure a company by only allowing secure zone
transfers to the secondary server. Which of the following should appear in the primary DNS
configuration file to accomplish this?

An employee of a company files a complaint with a security administrator. While sniffing network
traffic, the employee discovers that financially confidential emails were passing between two
warehouse users. The two users deny sending confidential emails to each other. Which of the
following security practices would allow for non-repudiation and prevent network sniffers from
reading the confidential mail? (Select TWO).

An administrator of a secure web server has several clients with top security clearance and prefers
security over performance. By default, which of the following cipher suites would provide strong
security, but at the same time the worst performance?

An administrator wants to integrate the Credential Security Support Provider (CredSSP) protocol
network level authentication (NLA) into the remote desktop terminal services environment. Which
of the following are supported authentication or encryption methods to use while implementing
this? (Select THREE).

A systems security consultant is hired by Corporation X to analyze the current enterprise network
environment and make recommendations for increasing network security. It is the consultant’s first
day on the job. Which of the following network design considerations should the consultant
consider? (Select THREE).

The Chief Executive Officer (CEO) has asked a security project manager to provide
recommendations on the breakout of tasks for the development of a new product. The CEO thinks
that by assigning areas of work appropriately the overall security of the product will be increased,
because staff will focus on their areas of expertise. Given the below groups and tasks select the
BEST list of assignments.
Groups: Networks, Development, Project Management, Security, Systems Engineering, Testing
Tasks: Decomposing requirements, Secure coding standards, Code stability, Functional validation,
Stakeholder engagement, Secure transport

Which of the following is the MOST secure way to ensure third party applications and introduce
only acceptable risk?