EMT Practice Test
1. Question Content...
Question1: Which of the following is the MOST important issue in a penetration test?
Question4: Which of the following should be done FIRST when implementing a security program?
Question9: Labeling information according to its security classification:
Question10: Implementing the principle of least privilege PRIMARILY requires the identification of:
Question13: The PRIMARY purpose for continuous monitoring of security controls is to ensure:
Question20: Which of the following is the responsibility of a risk owner?
Question38: After a server has been attacked, which of the following is the BEST course of action?
Question43: Information security controls should be designed PRIMARILY based on:
Question45: Which of the following is an example of risk mitigation?
Question47: A balanced scorecard MOST effectively enables information security:
Question53: The fundamental purpose of establishing security metrics is to:
Question54: Which risk is introduced when using only sanitized data for the testing of applications?
Question67: Threat and vulnerability assessments are important PRIMARILY because they are:
Question74: The MOST appropriate time to conduct a disaster recovery test would be after:
Question88: Penetration testing is MOST appropriate when a:
Question90: What is the BEST way to reduce the impact of a successful ransomware attack?
Question111: When properly implemented, secure transmission protocols protect transactions:
Question116: Which of the following is PRIMARILY determined by asset classification?
Question121: An anomaly-based intrusion detection system (IDS) operates by gathering data on:
Question126: Which of the following BEST facilitates effective incident response testing?
Question127: Which of the following will result in the MOST accurate controls assessment?
Question130: The PRIMARY advantage of involving end users in continuity planning is that they:
Question137: Which of the following defines the triggers within a business continuity plan (BCP)? @
Question163: In a call center, the BEST reason to conduct a social engineering is to:
Question165: Which of the following is the PRIMARY objective of incident triage?
Question171: An email digital signature will:
Question177: Of the following, who is in the BEST position to evaluate business impacts?
Question178: Which of the following is a PRIMARY benefit of managed security solutions?