Question 1Fill in the blank: A computer virus is malicious _____ that interferes with computer operations and causes damage.1 pointformattinghardwarecodesequencing2.Question 2What is one way that the Morris worm helped shape the security industry?1 pointIt inspired threat actors to develop new types of social engineering attacks.It led to the development of computer response teams.It made organizations more aware of the significant financial impact of security incidents.It prevented the development of illegal copies of software.3.Question 3What were the key impacts of the Equifax breach? Select two answers.1 pointMillions of customers' PII was stolen.The significant financial consequences of a breach became more apparent.Developers were able to track illegal copies of software and prevent pirated licenses.Phishing became illegal due to significant public outcry.4.Question 4Social engineering, such as phishing, is a manipulation technique that relies on computer error to gain private information, access, or valuables. 1 pointTrueFalse

Question 2What is one way that the Morris worm helped shape the security industry?1 pointIt inspired threat actors to develop new types of social engineering attacks.It led to the development of computer response teams.It prevented the development of illegal copies of software.It made organizations more aware of the significant financial impact of security incidents.

Question 2What is one way that the Morris worm helped shape the security industry?

1.Question 1Which of the following threats are examples of malware? Select two answers.1 pointError messagesWormsVirusesBugs2.Question 2Fill in the blank: The _____ spread globally within a couple of months due to users inserting a disk into their computers that was meant to track illegal copies of medical software. 1 pointBrain virusMorris wormLoveLetter attackEquifax breach3.Question 3Fill in the blank: Social engineering is a manipulation technique that exploits _____ error to gain access to private information.1 pointhumannetworkcomputercoding4.Question 4A security professional is asked to teach employees how to avoid inadvertently revealing sensitive data. What type of training should they conduct?1 pointTraining about social engineeringTraining about security architectureTraining about network optimizationTraining about business continuity5.Question 5Which of the following tasks are part of the security and risk management domain? Select all that apply.1 pointBusiness continuityComplianceSecuring physical assetsDefining security goals and objectives6.Question 6Which of the following tasks may be part of the security architecture and engineering domain? Select all that apply.1 pointEnsuring that effective systems and processes are in placeConfiguring a firewallValidating the identities of employeesSecuring hardware7.Question 7A security professional is ensuring proper storage, maintenance, and retention of their organization’s data. Which domain does this scenario describe?1 pointSecurity operationsAsset securityCommunication and network securitySecurity assessment and testing8.Question 8Which of the following tasks may be part of the security assessment and testing domain? Select all that apply.1 pointCollecting and analyzing dataAuditing user permissionsSecuring physical networks and wireless communicationsConducting security audits9.Question 9Which domain involves keeping data secure by ensuring users follow established policies to control and manage physical assets?1 pointCommunication and network securityIdentity and access managementSecurity assessment and testingSecurity and risk management10.Question 10Which domain involves conducting investigations and implementing preventive measures?1 pointSecurity operations Security and risk managementIdentity and access managementAsset security

Question 3What were the key impacts of the Equifax breach? Select two answers.1 pointThe significant financial consequences of a breach became more apparent.Developers were able to track illegal copies of software and prevent pirated licenses.Phishing became illegal due to significant public outcry.Millions of customers' PII was stolen.

1.Question 1Fill in the blank: A _____ is malicious code written to interfere with computer operations and cause damage to data. 1 pointspyware attackbusiness disruptionsoftware breachcomputer virus2.Question 2Fill in the blank: The _____ spread globally within a couple of months due to users inserting a disk into their computers that was meant to track illegal copies of medical software. 1 pointMorris wormLoveLetter attackBrain virusEquifax breach3.Question 3Fill in the blank: Social engineering is a manipulation technique that exploits _____ error to gain access to private information.1 pointcomputercodingnetworkhuman4.Question 4A security professional conducts internal training to teach their coworkers how to identify a social engineering attack. What types of security issues are they trying to avoid? Select all that apply.1 pointEmployees inadvertently revealing sensitive dataPhishing attacksMalicious software being deployedOvertaxing systems with too many internal emails5.Question 5A security professional is researching compliance and the law in order to define security goals. Which domain does this scenario describe?1 pointSecurity and risk managementSecurity architecture and engineering Security assessment and testingIdentity and access management6.Question 6Which of the following tasks may be part of the security architecture and engineering domain? Select all that apply.1 pointEnsuring that effective systems and processes are in placeValidating the identities of employeesConfiguring a firewallSecuring hardware7.Question 7A security professional is ensuring proper storage, maintenance, and retention of their organization’s data. Which domain does this scenario describe?1 pointSecurity assessment and testingSecurity operationsAsset securityCommunication and network security8.Question 8Which domain involves conducting, collecting, and analyzing data, as well as conducting security audits to monitor for risks, threats, and vulnerabilities?1 pointCommunication and network securityIdentity and access managementSecurity and risk managementSecurity assessment and testing9.Question 9Which domain involves keeping data secure by ensuring users follow established policies to control and manage physical assets?1 pointSecurity assessment and testingIdentity and access managementCommunication and network securitySecurity and risk management10.Question 10Which domain involves conducting investigations and implementing preventive measures?1 pointIdentity and access management Security and risk managementAsset securitySecurity operations