Practice Free CS0-003 Exam Online Questions
Which Of the following techniques would be best to provide the necessary assurance for embedded software that drives centrifugal pumps at a power Plant?
- A . Containerization
- B . Manual code reviews
- C . Static and dynamic analysis
- D . Formal methods
A security analyst is supporting an embedded software team.
Which of the following is the best recommendation to ensure proper error handling at runtime?
- A . Perform static code analysis.
- B . Require application fuzzing.
- C . Enforce input validation.
- D . Perform a code review.
When starting an investigation, which of the following must be done first?
- A . Notify law enforcement
- B . Secure the scene
- C . Seize all related evidence
- D . Interview the witnesses
Which of the following is the appropriate phase in the incident response process to perform a vulnerability scan to determine the effectiveness of corrective actions?
- A . Lessons learned
- B . Reporting
- C . Recovery
- D . Root cause analysis
A user reports a malware alert to the help desk. A technician verities the alert, determines the workstation is classified as a low-severity device, and uses network controls to block access. The technician then assigns the ticket to a security analyst who will complete the eradication and recovery processes.
Which of the following should the security analyst do next?
- A . Document the procedures and walk through the incident training guide.
- B . Reverse engineer the malware to determine its purpose and risk to the organization.
- C . Sanitize the workstation and verify countermeasures are restored.
- D . Isolate the workstation and issue a new computer to the user.
The Chief Information Security Officer (CISO) of a large management firm has selected a cybersecurity framework that will help the organization demonstrate its investment in tools and systems to protect its data.
Which of the following did the CISO most likely select?
- A . PCI DSS
- B . COBIT
- C . ISO 27001
- D . ITIL
A security analyst performs a vulnerability scan. Based on the metrics from the scan results, the analyst must prioritize which hosts to patch.
The analyst runs the tool and receives the following output:
Which of the following hosts should be patched first, based on the metrics?
- A . host01
- B . host02
- C . host03
- D . host04
An IT professional is reviewing the output from the top command in Linux. In this company, only IT and security staff are allowed to have elevated privileges. Both departments have confirmed they are not working on anything that requires elevated privileges.
Based on the output below:
Which of the following PIDs is most likely to contribute to data exfiltration?
- A . 2264
- B . 34218
- C . 34834
- D . 35963
A security analyst obtained the following table of results from a recent vulnerability assessment that was conducted against a single web server in the environment:
Which of the following should be completed first to remediate the findings?
- A . Ask the web development team to update the page contents
- B . Add the IP address allow listing for control panel access
- C . Purchase an appropriate certificate from a trusted root CA
- D . Perform proper sanitization on all fields
A security analyst at a company called ACME Commercial notices there is outbound traffic to a host IP that resolves to https://offce365password.acme.co. The site’s standard VPN logon page is www.acme.com/logon.
Which of the following is most likely true?
- A . This is a normal password change URL.
- B . The security operations center is performing a routine password audit.
- C . A new VPN gateway has been deployed
- D . A social engineering attack is underway