CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 83
1. Which of the following is the MOST appropriate frequency for updating antivirus signature files for antivirus software on production servers?
A) Daily
B) Weekly
C) Concurrently with O/S patch updates
D) During scheduled change control updates
2. Which of the following devices should be placed within a demilitarized zone (DMZ)?
A) Network switch
B) Web server
C) Database server
D) File/print server
3. On which of the following should a firewall be placed?
A) Web server
B) Intrusion detection system (IDS) server
C) Screened subnet
D) Domain boundary
4. An intranet server should generally be placed on the:
A) internal network.
B) firewall server.
C) external router.
D) primary domain controller.
5. Access control to a sensitive intranet application by mobile users can BEST be implemented through:
A) data encryption.
B) digital signatures.
C) strong passwords.
D) two-factor authentication.
A) Daily
B) Weekly
C) Concurrently with O/S patch updates
D) During scheduled change control updates
2. Which of the following devices should be placed within a demilitarized zone (DMZ)?
A) Network switch
B) Web server
C) Database server
D) File/print server
3. On which of the following should a firewall be placed?
A) Web server
B) Intrusion detection system (IDS) server
C) Screened subnet
D) Domain boundary
4. An intranet server should generally be placed on the:
A) internal network.
B) firewall server.
C) external router.
D) primary domain controller.
5. Access control to a sensitive intranet application by mobile users can BEST be implemented through:
A) data encryption.
B) digital signatures.
C) strong passwords.
D) two-factor authentication.
1. Right Answer: A
Explanation: New viruses are being introduced almost daily. The effectiveness of virus detection software depends on frequent updates to its virus signatures, which are stored on antivirus signature files so updates may be carried out several times during the day. At a minimum, daily updating should occur. Patches may occur less frequently. Weekly updates may potentially allow new viruses to infect the system.
2. Right Answer: B
Explanation: A web server should normally be placed within a demilitarized zone (DMZ) to shield the internal network. Database and file/print servers may contain confidential or valuable data and should always be placed on the internal network, never on a DMZ that is subject to compromise. Switches may bridge a DMZ to another network but do not technically reside within the DMZ network segment.
3. Right Answer: D
Explanation: A firewall should be placed on a (security) domain boundary. Placing it on a web server or screened subnet, which is a demilitarized zone (DMZ), does not provide any protection. Since firewalls should be installed on hardened servers with minimal services enabled, it is inappropriate to have the firewall and the intrusion detection system (IDS) on the same physical device.
4. Right Answer: A
Explanation: An intranet server should be placed on the internal network. Placing it on an external router leaves it defenseless. Since firewalls should be installed on hardened servers with minimal services enabled, it is inappropriate to store the intranet server on the same physical device as the firewall. Similarly, primary- domain controllers do not normally share the physical device as the intranet server.
5. Right Answer: D
Explanation: Two-factor authentication through the use of strong passwords combined with security tokens provides the highest level of security. Data encryption, digital signatures and strong passwords do not provide the same level of protection.
Explanation: New viruses are being introduced almost daily. The effectiveness of virus detection software depends on frequent updates to its virus signatures, which are stored on antivirus signature files so updates may be carried out several times during the day. At a minimum, daily updating should occur. Patches may occur less frequently. Weekly updates may potentially allow new viruses to infect the system.
2. Right Answer: B
Explanation: A web server should normally be placed within a demilitarized zone (DMZ) to shield the internal network. Database and file/print servers may contain confidential or valuable data and should always be placed on the internal network, never on a DMZ that is subject to compromise. Switches may bridge a DMZ to another network but do not technically reside within the DMZ network segment.
3. Right Answer: D
Explanation: A firewall should be placed on a (security) domain boundary. Placing it on a web server or screened subnet, which is a demilitarized zone (DMZ), does not provide any protection. Since firewalls should be installed on hardened servers with minimal services enabled, it is inappropriate to have the firewall and the intrusion detection system (IDS) on the same physical device.
4. Right Answer: A
Explanation: An intranet server should be placed on the internal network. Placing it on an external router leaves it defenseless. Since firewalls should be installed on hardened servers with minimal services enabled, it is inappropriate to store the intranet server on the same physical device as the firewall. Similarly, primary- domain controllers do not normally share the physical device as the intranet server.
5. Right Answer: D
Explanation: Two-factor authentication through the use of strong passwords combined with security tokens provides the highest level of security. Data encryption, digital signatures and strong passwords do not provide the same level of protection.
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment