Verified 312-38 Dumps (14.03) Prove Your Expertise: Continue to Check the 312-38 Free Dumps (Part 2, Q41-Q80)

1. Harry has successfully completed the vulnerability scanning process and found serious vulnerabilities exist in the organization's network. Identify the vulnerability management phases through which he will proceed to ensure all the detected vulnerabilities are addressed and eradicated. (Select all that apply)

2. An enterprise recently moved to a new office and the new neighborhood is a little risky. The CEO wants to monitor the physical perimeter and the entrance doors 24 hours.

What is the best option to do this job?

3. Assume that you are working as a network administrator in the head office of a bank. One day a bank employee informed you that she is unable to log in to her system. At the same time, you get a call from another network administrator informing you that there is a problem connecting to the main server.

How will you prioritize these two incidents?

4. The network administrator wants to strengthen physical security in the organization. Specifically, to implement a solution stopping people from entering certain restricted zones without proper credentials.

Which of following physical security measures should the administrator use?

5. Identify the spread spectrum technique that multiplies the original data signal with a pseudo random noise spreading code.

6. Sam wants to implement a network-based IDS in the network. Sam finds out the one IDS solution which works is based on patterns matching.

Which type of network-based IDS is Sam implementing?

7. Katie has implemented the RAID level that split data into blocks and evenly write the data to multiple hard drives but does not provide data redundancy. This type of RAID level requires a minimum of________in order to

setup.

8. During a security awareness program, management was explaining the various reasons which create threats to network security.

Which could be a possible threat to network security?

9. Malone is finishing up his incident handling plan for IT before giving it to his boss for review. He is outlining the incident response methodology and the steps that are involved.

What is the last step he should list?

10. Alex is administrating the firewall in the organization's network.

What command will he use to check all the remote addresses and ports in numerical form?

11. James is a network administrator working at a student loan company in Minnesota. This company processes over 20,000 student loans a year from colleges all over the state. Most communication between the company schools, and lenders is carried out through emails. Much of the email communication used at his company contains sensitive information such as social security numbers. For this reason, James wants to utilize email encryption. Since a server-based PKI is not an option for him, he is looking for a low/no cost solution to encrypt emails.

What should James use?

12. Rick has implemented several firewalls and IDS systems across his enterprise network.

What should he do to effectively correlate all incidents that pass through these security controls?

13. David is working in a mid-sized IT company. Management asks him to suggest a framework that can be used effectively to align the IT goals to the business goals of the company. David suggests the______framework, as it provides a set of controls over IT and consolidates them to form a framework.

14. Consider a scenario consisting of a tree network. The root Node N is connected to two man nodes N1 and N2. N1 is connected to N11 and N12. N2 is connected to N21 and N22.

What will happen if any one of the main nodes fail?

15. Simon had all his systems administrators implement hardware and software firewalls to ensure network security. They implemented IDS/IPS systems throughout the network to check for and stop any unauthorized traffic that may attempt to enter. Although Simon and his administrators believed they were secure, a hacker group was able to get into the network and modify files hosted on the company's website. After searching through the firewall and server logs, no one could find how the attackers were able to get in. He decides that the entire network needs to be monitored for critical and essential file changes. This monitoring tool alerts administrators when a critical file is altered.

What tool could Simon and his administrators implement to accomplish this?

16. Paul is a network security technician working on a contract for a laptop manufacturing company in Chicago. He has focused primarily on securing network devices, firewalls, and traffic traversing in and out of the network. He just finished setting up a server a gateway between the internal private network and the outside public network. This server will act as a proxy, limited amount of services, and will filter packets.

What is this type of server called?

17. Frank is a network technician working for a medium-sized law firm in Memphis. Frank and two other IT employees take care of all the technical needs for the firm. The firm's partners have asked that a secure wireless network be implemented in the office so employees can move about freely without being tied to a network cable. While Frank and his colleagues are familiar with wired Ethernet technologies, 802.3, they are not familiar with how to setup wireless in a business environment.

What IEEE standard should Frank and the other IT employees follow to become familiar with wireless?

18. ------------is a group of broadband wireless communications standards for Metropolitan Area

Networks (MANs)

19. Dan and Alex are business partners working together. Their Business-Partner Policy states that they should encrypt their emails before sending to each other.

How will they ensure the authenticity of their emails?

20. Heather has been tasked with setting up and implementing VPN tunnels to remote offices. She will most likely be implementing IPsec VPN tunnels to connect the offices.

At what layer of the OSI model does an IPsec tunnel function on?

21. John wants to implement a firewall service that works at the session layer of the OSI model. The firewall must also have the ability to hide the private network information.

Which type of firewall service is John thinking of implementing?

22. John wants to implement a packet filtering firewall in his organization's network.

What TCP/IP layer does a packet filtering firewall work on?

23. Nancy is working as a network administrator for a small company. Management wants to implement a RAID storage for their organization.

They want to use the appropriate RAID level for their backup plan that will satisfy the following requirements:

1. It has a parity check to store all the information about the data in multiple drives

2. Help reconstruct the data during downtime.

3. Process the data at a good speed.

4. Should not be expensive.

The management team asks Nancy to research and suggest the appropriate RAID level that best suits their requirements.

What RAID level will she suggest?

24. Identify the minimum number of drives required to setup RAID level 5.

25. Stephanie is currently setting up email security so all company data is secured when passed through email. Stephanie first sets up encryption to make sure that a specific user's email is protected. Next, she needs to ensure that the incoming and the outgoing mail has not been modified or altered using digital signatures.

What is Stephanie working on?

26. Michael decides to view the-----------------to track employee actions on the organization's network.

27. Cindy is the network security administrator for her company. She just got back from a security conference in Las Vegas where they talked about all kinds of old and new security threats; many of which she did not know of. She is worried about the current security state of her company's network so she decides to start scanning the network from an external IP address. To see how some of the hosts on her network react, she sends out SYN packets to an IP range. A number of IPs responds with a SYN/ACK response. Before the connection is established, she sends RST packets to those hosts to stop the session. She has done this to see how her intrusion detection system will log the traffic.

What type of scan is Cindy attempting here?

28. A network is setup using an IP address range of 0.0.0.0 to 127.255.255.255. The network has a default subnet mask of 255.0.0.0.

What IP address class is the network range a part of?

29. Mark is monitoring the network traffic on his organization's network. He wants to detect a TCP and UDP ping sweep on his network.

Which type of filter will be used to detect this on the network?

30. Brendan wants to implement a hardware based RAID system in his network. He is thinking of choosing a suitable RAM type for the architectural setup in the system. The type he is interested in provides access times of up to 20 ns.

Which type of RAM will he select for his RAID system?

31. A local bank wants to protect their card holder data. The bank should comply with the________standard to ensure the security of card holder data.

32. James wants to implement certain control measures to prevent denial-of-service attacks against the organization.

Which of the following control measures can help James?

33. Geon Solutions INC., had only 10 employees when it started. But as business grew, the organization had to increase the amount of staff. The network administrator is finding it difficult to accommodate an increasing number of employees in the existing network topology. So the organization is planning to implement a new topology where it will be easy to accommodate an increasing number of employees.

Which network topology will help the administrator solve the problem of needing to add new employees and expand?

34. Smith is an IT technician that has been appointed to his company's network vulnerability assessment team. He is the only IT employee on the team. The other team members include employees from Accounting, Management, Shipping, and Marketing. Smith and the team members are having their first meeting to discuss how they will proceed.

What is the first step they should do to create the network vulnerability assessment

plan?

35. The agency Jacob works for stores and transmits vast amounts of sensitive government data that cannot be compromised. Jacob has implemented Encapsulating Security Payload (ESP) to encrypt IP traffic. Jacob wants to encrypt the IP traffic by inserting the ESP header in the IP datagram before the transport layer protocol header.

What mode of ESP does Jacob need to use to encrypt the IP traffic?

36. Malone is finishing up his incident handling plan for IT before giving it to his boss for review. He is outlining the incident response methodology and the steps that are involved.

Which step should Malone list as the last step in the incident response methodology?

37. Alex is administrating the firewall in the organization's network.

What command will he use to check the ports applications open?

38. Daniel is monitoring network traffic with the help of a network monitoring tool to detect any abnormalities.

What type of network security approach is Daniel adopting?

39. Ivan needs to pick an encryption method that is scalable even though it might be slower. He has settled on a method that works where one key is public and the other is private.

What encryption method did Ivan settle on?

40. Identify the correct statements regarding a DMZ zone: