Which of the following is the BEST approach to implemen…
A small company has a website that provides online customer support. The company requires an account recovery process so that customers who forget their
passwords can regain access.
Which of the following is the BEST approach to implement this process?
Which of the following is the BEST approach to implemen…
An insurance company requires an account recovery process so that information created by an employee can be accessed after that employee is no longer with
the firm. Which of the following is the BEST approach to implement this process?
Which of the following account management practices doe…
The IT department has setup a website with a series of questions to allow end users to reset their own accounts. Which of the following account management
practices does this help?
Which of the following should be done before resetting …
Which of the following should be done before resetting a user’s password due to expiration?
Which of the following can the security Administrator i…
A security administrator is concerned about the strength of user’s passwords. The company does not want to implement a password complexity policy. Which of
the following can the security Administrator implement to mitigate the risk of an online password attack against users with weak passwords?
Which of the following BEST supports this reasoning?
Sara, a security manager, has decided to force expiration of all company passwords by the close of business day. Which of the following BEST supports this
reasoning?
Which of the following would BEST mitigate this risk?
The systems administrator notices that many employees are using passwords that can be easily guessed or are susceptible to brute force attacks. Which of the
following would BEST mitigate this risk?
Which of the following types of password controls would…
An internal auditing team would like to strengthen the password policy to support special characters. Which of the following types of password controls would
achieve this goal?
Which of the following types of user account options we…
After a recent internal audit, the security administrator was tasked to ensure that all credentials must be changed within 90 days, cannot be repeated, and cannot
contain any dictionary words or patterns. All credentials will remain enabled regardless of the number of attempts made. Which of the following types of user
account options were enforced? (Select TWO).
Which of the following could have prevented this from h…
When Ann an employee returns to work and logs into her workstation she notices that, several desktop configuration settings have changed. Upon a review of the
CCTV logs, it is determined that someone logged into Ann’s workstation. Which of the following could have prevented this from happening?