Question 1

During a post-mortem incident review meeting, it is noted that a malicious attacker attempted to achieve network persistence by using vulnerabilities that appeared to be lower risk but ultimately allowed the attacker to escalate their privileges. Which ofthe following did the attacker MOST likely apply?

Options :

A : Exploit chaining

B : Brute force attack

C : Cross-site scripting

D : Deployment of rogue wireless access points

Answer: A

Question 2

Which of the following is the PRIMARY benefit of compiled programming languages?

Options :

A : Streamlined development

B : Fasterapplication execution

C : Flexibledeployment

D : Ability to change code in production

Answer: B

Question 3

Which of the following is theMOSTimportant component oftheasset decommissioning process from a data risk perspective?

Options :

A : Informing the data owner when decommissioning is complete

B : Destruction of data on the assets

C : Updating the asset status in the configuration management database (CMD8)

D : Removing the monitoring of the assets

Answer: B

Question 4

After identified weaknesses have been remediated, which of the following should be completed NEXT?

Options :

A : Perform a validation scan before moving to production.

B : Perform software code testing.

C : Perform a software quality assurance (QA) activity.

D : Move the fixed system directly to production.

Answer: A

Question 5

The Platform as a Service (PaaS) model is often used to support which of the following?

Options :

A : Efficient application development and management

B : Local on-premise management of products and services

C : Subscription-based pay peruse applications

D : Control over physical equipment running application developed In-house

Answer: A

Higher Test Marks with Free Online CCOA Exam Practice

Buying Options: