Practice Free CS0-003 Exam Online Questions
Which of the following best explains the importance of network micro segmentation as part of a Zero Trust architecture?
- A . To allow policies that are easy to manage and less granular
- B . To increase the costs associated with regulatory compliance
- C . To limit how far an attack can spread
- D . To reduce hardware costs with the use of virtual appliances
A web application team notifies a SOC analyst that there are thousands of HTTP/404 events on the public-facing web server.
Which of the following is the next step for the analyst to take?
- A . Instruct the firewall engineer that a rule needs to be added to block this external server.
- B . Escalate the event to an incident and notify the SOC manager of the activity.
- C . Notify the incident response team that a DDoS attack is occurring.
- D . Identify the IP/hostname for the requests and look at the related activity.
A penetration tester submitted data to a form in a web application, which enabled the penetration tester to retrieve user credentials.
Which of the following should be recommended for remediation of this application vulnerability?
- A . Implementing multifactor authentication on the server OS
- B . Hashing user passwords on the web application
- C . Performing input validation before allowing submission
- D . Segmenting the network between the users and the web server
During the log analysis phase, the following suspicious command is detected-
Which of the following is being attempted?
- A . Buffer overflow
- B . RCE
- C . ICMP tunneling
- D . Smurf attack
Based on an internal assessment, a vulnerability management team wants to proactively identify risks to the infrastructure prior to production deployments.
Which of the following best supports this approach?
- A . Threat modeling
- B . Penetration testing
- C . Bug bounty
- D . SDLC training
An analyst is designing a message system for a bank. The analyst wants to include a feature that allows the recipient of a message to prove to a third party that the message came from the sender.
Which of the following information security goals is the analyst most likely trying to achieve?
- A . Non-repudiation
- B . Authentication
- C . Authorization
- D . Integrity
A company’s internet-facing web application has been compromised several times due to identified design flaws. The company would like to minimize the risk of these incidents from reoccurring and has provided the developers with better security training. However, the company cannot allocate any more internal resources to the issue.
Which of the following are the best options to help identify flaws within the system? (Select two).
- A . Deploying a WAF
- B . Performing a forensic analysis
- C . Contracting a penetration test
- D . Holding a tabletop exercise
- E . Creating a bug bounty program
- F . Implementing threat modeling
Following an attack, an analyst needs to provide a summary of the event to the Chief Information Security Officer. The summary needs to include the who-what-when information and evaluate the effectiveness of the plans in place.
Which of the following incident management life cycle processes does this describe?
- A . Business continuity plan
- B . Lessons learned
- C . Forensic analysis
- D . Incident response plan
A company is concerned with finding sensitive file storage locations that are open to the public. The current internal cloud network is flat.
Which of the following is the best solution to secure the network?
- A . Implement segmentation with ACLs.
- B . Configure logging and monitoring to the SIEM.
- C . Deploy MFA to cloud storage locations.
- D . Roll out an IDS.
Which of the following software assessment methods world peak times?
- A . Security regression testing
- B . Stress testing
- C . Static analysis testing
- D . Dynamic analysis testing
- E . User acceptance testing