Fill in the blank: A security professional has been tasked with implementing safeguards to reduce suspicious activity on their company's network. They use _____ to help them reduce this type of risk.1 point private informationsecurity controlssecurity ethicspublic websites

A security professional closely examines their organization’s network, then evaluates potential risks to the network. Their goal is to ensure internal safeguards and processes are effective. What security concept does this scenario describe?1 pointCompliance regulationsSecurity recommendationsControls assessmentCommunicating results

Question 1What does a security professional use to create guidelines and plans that educate employees about how they can help protect the organization? 1 pointSecurity postureSecurity auditSecurity frameworkSecurity hardening

ill in the blank: Performing _____ enables security professionals to review an organization's security records, activities, and related documents.1 pointethical hackingpenetration testssoftware developmentssecurity audits

Question 1Fill in the blank: Cybersecurity aims to protect networks, devices, people, and data from _____ or unauthorized access. 1 pointmarket shiftspoor financial managementchanging business prioritiescriminal exploitation2.Question 2Which of the following tasks are typically responsibilities of entry-level security analysts? Select all that apply.1 pointCreating organizational policiesProtecting computer and network systemsInstalling prevention softwareExamining in-house security issues3.Question 3Someone outside of an organization attempts to gain access to its private information. What type of threat does this scenario describe?1 pointExternalEthicalAccidentalInternal4.Question 4Fill in the blank: Identity theft is the act of stealing _____ to commit fraud while impersonating a victim.1 pointhardwarebusiness recordstrade secretspersonal information5.Question 5What is regulatory compliance?1 pointThreats and risks from employees and external vendorsLaws and guidelines that require implementation of security standardsSites and services that require complex passwords to accessExpenses and fines associated with vulnerabilities6.Question 6An individual is in their first job as an entry-level security professional. They take training to learn more about the specific tools, procedures, and policies that are involved in their career. What does this scenario describe?1 pointTransferring capabilities from one career to anotherImproving management capabilitiesGaining new technical skillsUnderstanding different perspectives7.Question 7Fill in the blank: Security information and _____ management (SIEM) tools enable security professionals to identify and analyze threats, risks, and vulnerabilities. 1 pointemergencyeventemployerenterprise8.Question 8What do security professionals typically do with SIEM tools?1 pointEducate others about potential security threats, risks, and vulnerabilitiesIdentify threat actors and their locationsLocate and preserve criminal evidenceIdentify and analyze security threats, risks, and vulnerabilities9.Question 9Which of the following statements accurately describe personally identifiable information (PII) and sensitive personally identifiable information (SPII)? Select all that apply.1 pointSPII is a type of PII that falls under stricter handling guidelines.An example of PII is someone’s email address.An example of SPII is someone’s last name. The theft of SPII is often more damaging than the theft of PII.

Question 7Fill in the blank: As a security professional, you monitor the potential threats associated with _____ because they often have access to sensitive information, know where to find it, and may have malicious intent. 1 pointexternal vendorsexisting customersdisgruntled employees governing agencies