Question 1Fill in the blank: Security teams can use _____ to examine network logs and identify events of interest. 1 pointbaseline configurationport filteringnetwork segmentationsecurity information and event management (SIEM) tools2.Question 2What is a basic principle of port filtering?1 pointAllow ports that are used by normal network operations.Disallow ports that are used by normal network operations.Block all ports in a network.Allow users access to only areas of the network that are required for their role. 3.Question 3A security professional creates different subnets for the various departments in their business, ensuring users have access that is appropriate for their particular roles. What does this scenario describe?1 pointNetwork log analysisPatch updatesNetwork segmentationFirewall maintenance4.Question 4Data in restricted zones should have the same encryption standards as data in other zones.1 pointTrueFalse

In what way might port filtering be used to protect a network from an attack?1 point To increase the attack surface in a networkTo disable unused ports in order to reduce the attack surfaceTo inspect, analyze, and react to security events based on their priorityTo create isolated subnets for different departments in an organization9.Question 9

What is a basic principle of port filtering?1 pointAllow ports that are used by normal network operations.Allow users access to only areas of the network that are required for their role. Block all ports in a network.Disallow ports that are used by normal network operations.3.Question 3

Fill in the blank: Security teams can use _____ to examine network logs and identify events of interest. 1 pointsecurity information and event management (SIEM) toolsnetwork segmentationport filteringbaseline configuration

1.Question 1Which of the following statements correctly describe logs? Select three answers.1 pointSecurity teams monitor logs to identify vulnerabilities and potential data breaches. Outbound requests to the internet from within a network are recorded in a firewall log.Actions such as login requests are recorded in a server log.Connections between devices and services on a network are recorded in a firewall log.2.Question 2What are some of the key benefits of SIEM tools? Select three answers.1 pointEliminate the need for manual review of logsProvide event monitoring and analysisCollect log data from different sourcesSave time3.Question 3Fill in the blank: Software application _____ are technical attributes, such as response time, availability, and failure rate.1 pointSIEM toolsdashboardslogsmetrics4.Question 4A security team chooses to implement a SIEM tool that will be managed and maintained by the organization's IT department, rather than a third-party vendor. What type of tool are they using?1 pointHybridDepartment-hostedCloud-hostedSelf-hosted5.Question 5You are a security professional, and you want to save time by using a SIEM tool that will be managed by a provider and only be accessible through the internet. What type of tool do you choose?1 pointHybridIT-hostedSelf-hostedCloud-hosted6.Question 6Fill in the blank: SIEM tools retain, analyze, and search an organization's _____ to provide security information and alerts.1 pointlog datacloud applicationsdatabasehardware7.Question 7A security analyst receives an alert about hundreds of login attempts from unusual geographic locations within the last few minutes. What can the analyst use to review a timeline of the login attempts, locations, and time of activity?1 pointA SIEM tool dashboard A network protocol analyzer (packet sniffer) A playbookAn operating system8.Question 8Which type of tool typically requires users to pay for usage?1 pointCloud nativeProprietary Self-hostedOpen-source

1.Question 1To connect an entire city, the most effective network type would be a local area network (LAN).1 pointTrueFalse2.Question 2A security professional wants to ensure information is being broadcast to every computer on their organization’s network. What device should they investigate?1 pointHubRouterInternet Modem3.Question 3What are some benefits of switches? Select all that apply.1 pointThey control the flow of traffic.They only pass data to the intended destination.They automatically install device-protection software.They can improve network performance.4.Question 4Fill in the blank: The practice of using servers, applications, and network services that are hosted on the internet is called _____ computing. 1 pointwebsiteconnectedclouduploadable