Summer Sale - Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70dumps

Apprentice Questions and Answers

Question # 6

Which statement best distinguishes a Host-Based Intrusion Detection System (HIDS) from a Network-Based Intrusion Detection System (NIDS)?

A.

Network-Based is installed on an individual endpoint to monitor all inbound/outbound traffic of that device.

B.

Host-Based is installed on an individual endpoint to monitor all inbound/outbound traffic of that traffic.

C.

Host-Based directly integrates with the endpoint and is known as the last line of defense.

D.

Network-Based directly integrates with the endpoint and is known as the last line of defense.

Full Access
Question # 7

What is a function of an Intrusion Detection System (IDS)?

A.

Rejecting connections deemed anomalous

B.

Filtering outbound malicious TCP packets

C.

Monitoring network traffic for specific patterns

D.

Dropping inline network packets

Full Access
Question # 8

How does antivirus software contribute to endpoint security?

A.

By enforcing strong password security policies for user account access

B.

By filtering unsolicited commercial email from a user’s inbox

C.

By scanning files and programs for known malware signatures

D.

By creating secure, isolated environments for untested applications

Full Access
Question # 9

Which metric measures how long it takes a security team to detect a cybersecurity incident?

A.

MTTR

B.

MTTD

C.

MFA

D.

NAT

Full Access
Question # 10

What is the primary purpose of an Intrusion Prevention System (IPS)?

A.

Detecting malicious traffic before reaching trusted network

B.

Filtering malicious traffic before reaching trusted network

C.

Building code for server infrastructure

D.

Deploying scanners for server infrastructure

Full Access
Question # 11

What does continuous integration and continuous delivery/deployment (CI/CD) improve for an organization?

A.

Network threat alert potential

B.

API interaction optimization

C.

Secure development pipeline

D.

Storage quotas for code

Full Access
Question # 12

What is commonly associated with endpoint security?

A.

Antivirus

B.

Syslog

C.

Virtual Machine (VM)

D.

Data Loss Prevention (DLP)

Full Access
Question # 13

What is a desired outcome of automation in a security operations center (SOC)?

A.

Increased number of alerts

B.

Increased MTTR

C.

Increased efficiency

D.

Increased false positives

Full Access
Question # 14

What will secure connections from a company’s remote employees when they want to access sensitive documents at a branch office?

A.

Public FTP servers using RADIUS authentication

B.

VPN clients on compatible devices

C.

Attachments transferred via unsecured email

D.

Websites using steganography

Full Access
Question # 15

What is a self-contained operating environment that behaves like a computer separate from the physical host?

A.

WAN accelerator

B.

Virtual Machine (VM)

C.

Hypervisor

D.

Container

Full Access
Question # 16

Which device operates at OSI Layer 2?

A.

Hub

B.

Switch

C.

Router

D.

Modem

Full Access
Question # 17

What is a self-sufficient executable package that encompasses all necessary components for running a piece of software including the code, runtime, libraries, and system tools?

A.

Container

B.

Host

C.

Server

D.

Virtual machine (VM)

Full Access
Question # 18

What will cause an unusually high number of false positive alerts?

A.

Post-breach recovery plan is well defined.

B.

User privilege is configured to be strict.

C.

Device is unable to receive an IP address.

D.

Traffic match criteria is too generalized.

Full Access
Question # 19

What is a purpose of security operations?

A.

Investigating security events

B.

Tracking assets

C.

Installing endpoint security software

D.

Aligning applications to compliance standards

Full Access
Question # 20

Which cloud computing model is appropriate for a company that requires an isolated environment which meets strict compliance requirements and maintains enhanced security?

A.

Hybrid

B.

Private

C.

Public

D.

Community

Full Access
Question # 21

What are two functions of VPN gateways? (Choose two.)

A.

Certificate refresh

B.

Site-to-Site connectivity

C.

Remote access

D.

URL filtering

Full Access
Question # 22

Which two sets of actions are examples of multi-factor authentication (MFA)? (Choose two.)

A.

Answering a security question and providing a thumbprint

B.

Entering a PIN and scanning a smart card

C.

Scanning the palm of one hand followed by the other hand

D.

Answering three sequential security questions

Full Access
Question # 23

What are two components of a cloud-native security platform (CNSP)? (Choose two.)

A.

Asset inventory

B.

VPN

C.

Endpoint security

D.

Identity and access management (IAM)

Full Access
Question # 24

What is the primary responsibility of the cloud provider in the cloud shared responsibility model?

A.

Configuring application-level security settings

B.

Securing underlying physical servers and network infrastructure

C.

Providing end-user training on application usage

D.

Monitoring and managing user access and permissions

Full Access
Question # 25

What is a benefit of SD-WAN versus traditional WANs?

A.

Reliance on multiple different WAN connection types and licenses is removed.

B.

All physical WAN components can be easily removed and replaced without network disruption.

C.

Administrators can deploy WAN connection policies across an entire network at once.

D.

WANs are physically connected and strengthened against electromagnetic interference.

Full Access
Question # 26

Which OSI layer is used to determine how long communications are open between two devices?

A.

Transport

B.

Application

C.

Session

D.

Network

Full Access
Question # 27

What is the purpose of continuous deployment in the CI/CD lifecycle?

A.

Maintaining a state in which any version of the software can be deployed to a production environment.

B.

Merging code changes into a central repository

C.

Packaging code into a Docker container for deployment

D.

Automatically deploying every change that passes the automated tests to production, minimizing lead time

Full Access
Question # 28

Which security control is best suited to block traffic based on the actual application being used rather than only the port number?

A.

Hub

B.

Next-generation firewall

C.

DHCP server

D.

Layer 2 switch

Full Access
Question # 29

In which use case would URL filtering be an appropriate solution?

A.

Redirecting malicious DNS traffic to a sinkhole

B.

Blocking large file transfers over a network

C.

Preventing employees from accessing social media sites during work hours

D.

Encrypting outgoing emails containing confidential information

Full Access
Question # 30

What are two characteristics of data loss prevention (DLP)? (Choose two.)

A.

Traffic shaping

B.

Key logging

C.

File-level encryption

D.

Content-aware

Full Access
Question # 31

What is responsible for securing web access for managed and unmanaged devices?

A.

IDS

B.

Cloud workload protection (CWP)

C.

Enterprise browser

D.

VLAN

Full Access
Question # 32

What are two areas in which AI can help Security Operations Center (SOC) teams with alerts? (Choose two.)

A.

Vulnerability patching

B.

Alert triage

C.

SOC resource management

D.

Incident response

Full Access
Question # 33

Which scenario is an example of east-west traffic?

A.

A virtual machine (VM) communicates with a host on the internet.

B.

A traffic pattern passes through perimeter-focused defense.

C.

A host computer communicates with an infected offsite server.

D.

A host computer communicates with a virtual machine (VM) in the same network.

Full Access
Question # 34

What is a function of a Network-Based Intrusion Detection System (NIDS)?

A.

Scanning and quarantining infected files on a host machine

B.

Proxying traffic before reaching an internal network

C.

Blocking malicious traffic from entering a network in real time

D.

Monitoring network traffic and reporting results to an administrator

Full Access