Which of the following can BEST address this concern?
A system administrator has concerns regarding their users accessing systems and secured areas using
others’ credentials. Which of the following can BEST address this concern?
Which of the following preventative controls would be appropriate for responding to a directive to reduce the
Which of the following preventative controls would be appropriate for responding to a directive to
reduce the attack surface of a specific host?
Which of the following is the ALE of this server?
Joe, the system administrator, has been asked to calculate the Annual Loss Expectancy (ALE) for a $5,000
server, which often crashes. In the past year, the server has crashed 10 times, requiring a system reboot
to recover with only 10% loss of data or function. Which of the following is the ALE of this server?
Which of the following is the ALE that Sara should report to management for a security breach?
Sara, a security analyst, is trying to prove to management what costs they could incur if their customer
database was breached. This database contains 250 records with PII. Studies show that the cost per
record for a breach is $300. The likelihood that their database would be breached in the next year is only
5%. Which of the following is the ALE that Sara should report to management for a security breach?
An advantage of virtualizing servers, databases, and office applications is:
An advantage of virtualizing servers, databases, and office applications is:
which of the following tasks?
Key elements of a business impact analysis should include which of the following tasks?
Which of the following is the ALE for the company?
A security administrator is tasked with calculating the total ALE on servers. In a two year period of time, a
company has to replace five servers. Each server replacement has cost the company $4,000 with
downtime costing $3,000. Which of the following is the ALE for the company?
Which of the following would include the MOST detail on these objectives?
In the case of a major outage or business interruption, the security office has documented the expected
loss of earnings, potential fines and potential consequence to customer service. Which of the following
would include the MOST detail on these objectives?
Which of the following would BEST be used to calculate the expected loss of an event, if the likelihood of an
Which of the following would BEST be used to calculate the expected loss of an event, if the likelihood of
an event occurring is known? (Select TWO).
Which of the following documents is the CIO MOST likely updating?
A company’s chief information officer (CIO) has analyzed the financial loss associated with the company’s
database breach. They calculated that one single breach could cost the company $1,000,000 at a
minimum. Which of the following documents is the CIO MOST likely updating?