Free GIAC GCCC Exam Questions & Answer from Training Expert Dumpexams [Q54-Q72]

Free GIAC GCCC Exam Questions and Answer from Training Expert Dumpexams

Top GIAC GCCC Courses Online

For more info read reference:

GIAC GCCC Exam Guide

 

NEW QUESTION 54
An organization is implementing an application software security control their custom-written code that provides web-based database access to sales partners. Which action will help mitigate the risk of the application being compromised?

• A. Logging the connection requests to the web application server from outside hosts
• B. Identifying high-risk assets that are on the same network as the web application server
• C. Creating signatures for their IDS to detect attacks specific to their web application
• D. Providing the source code for their web application to existing sales partners

Answer: C

 

NEW QUESTION 55
As part of a scheduled network discovery scan, what function should the automated scanning tool perform?

• A. Uninstall listening services that have not been used since the last scheduled scan
• B. Automatically close ports and services not included in the current baseline
• C. Compare discovered ports and services to a known baseline to report deviations
• D. Alert the incident response team on ports and services added since the last scan

Answer: C

 

NEW QUESTION 56
A global corporation has major data centers in Seattle, New York, London and Tokyo. Which of the following is the correct approach from an intrusion detection and event correlation perspective?

• A. Synchronize between Seattle and New York, and use local time for London and Tokyo
• B. Configure all data center systems to use GMT time
• C. Configure all systems to use their default time settings
• D. Configure all data center systems to use local time

Answer: D

 

NEW QUESTION 57
Given the audit finding below, which CIS Control was being measured?

• A. Inventory and Control of Hardware Assets
• B. Limitation and Control of Network Ports, Protocols and Services
• C. Secure Configurations for Hardware and Software on Laptops, Workstations, and Servers
• D. Controlled Access Based on the Need to Know
• E. Controlled Use of Administrative Privilege

Answer: E

 

NEW QUESTION 58
What is a recommended defense for the CIS Control for Application Software Security?

• A. Limit access to the web application production environment to just the developers
• B. Run a dedicated vulnerability scanner against backend databases
• C. Display system error messages for only non-kernel related events
• D. Keep debugging code in production web applications for quick troubleshooting

Answer: B

 

NEW QUESTION 59
Which of the following baselines is considered necessary to implement the Boundary Defense CIS Control?

• A. Network Device Configuration Baselines
• B. Multi-Factor Authentication Standard
• C. Network Traffic/Service Baseline
• D. Network Information Flow

Answer: D

 

NEW QUESTION 60
Beta corporation is doing a core evaluation of its centralized logging capabilities. The security staff suspects that the central server has several log files over the past few weeks that have had their contents changed. Given this concern, and the need to keep archived logs for log correction applications, what is the most appropriate next steps?

• A. Store the files read-only and keep hashes of the logs separately.
• B. Install a tier one timeserver on the network to keep log devices synchronized.
• C. Encrypt the log files with an asymmetric key and remove the cleartext version.
• D. Keep the files in the log archives synchronized with another location.

Answer: A

 

NEW QUESTION 61
What is the first step suggested before implementing any single CIS Control?

• A. Develop a roll-out schedule
• B. Perform a vulnerability scan
• C. Develop an effectiveness test
• D. Perform a gap analysis

Answer: D

 

NEW QUESTION 62
Allied services have recently purchased NAC devices to detect and prevent non-company owned devices from attaching to their internal wired and wireless network. Corporate devices will be automatically added to the approved device list by querying Active Directory for domain devices. Non-approved devices will be placed on a protected VLAN with no network access. The NAC also offers a web portal that can be integrated with Active Directory to allow for employee device registration which will not be utilized in this deployment.
Which of the following recommendations would make NAC installation more secure?

• A. Enforce company configuration standards for personal mobile devices
• B. Disable the web portal device registration service
• C. Configure Active Directory to push an updated inventory to the NAC daily
• D. Change the wireless password following the NAC implementation

Answer: B

 

NEW QUESTION 63
When evaluating the Wireless Access Control CIS Control, which of the following systems needs to be tested?

• A. 802.1x authentication systems
• B. PII data scanner
• C. Data classification and access baselines
• D. Log management system

Answer: A

 

NEW QUESTION 64
Which CIS Control includes storing system images on a hardened server, scanning production systems for out-of-date software, and using file integrity assessment tools like tripwire?

• A. Inventory of Authorized and Unauthorized Software
• B. Secure Configurations for Network Devices such as Firewalls, Routers and Switches
• C. Continuous Vulnerability Management
• D. Secure Configurations for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers

Answer: D

 

NEW QUESTION 65
Below is a screenshot from a deployed next-generation firewall. These configuration settings would be a defensive measure for which CIS Control?

• A. Limitation and Control of Network Ports, Protocols and Services
• B. Email and Web Browser Protections
• C. Controlled Access Based on the Need to Know
• D. Secure Configuration for Network Devices, such as Firewalls, Routers and Switches.

Answer: B

 

NEW QUESTION 66
An auditor is validating the policies and procedures for an organization with respect to a control for Data Recovery. The organization's control states they will completely back up critical servers weekly, with incremental backups every four hours. Which action will best verify success of the policy?

• A. Restore the critical server data from backup and see if data is missing
• B. Select a random file from a critical server and verify it is present in a backup set
• C. Check the backup logs from the critical servers and verify there are no errors
• D. Verify that the backup media cannot be read without the encryption key

Answer: A

 

NEW QUESTION 67
Which of the following assigns a number indicating the severity of a discovered software vulnerability?

• A. CPE
• B. CCE
• C. CVSS
• D. CVE

Answer: C

 

NEW QUESTION 68
Implementing which of the following will decrease spoofed e-mail messages?

• A. Network Address Translation
• B. Sender Policy Framework
• C. Internet Message Access Protocol
• D. Finger Protocol

Answer: B

 

NEW QUESTION 69
Executive management approved the storage of sensitive data on smartphones and tablets as long as they were encrypted. Later a vulnerability was announced at an information security conference that allowed attackers to bypass the device's authentication process, making the data accessible. The smartphone manufacturer said it would take six months for the vulnerability to be fixed and distributed through the cellular carriers. Four months after the vulnerability was announced, an employee lost his tablet and the sensitive information became public.
What was the failure that led to the information being lost?

• A. Management had not insured against the possibility of the information being lost
• B. Vulnerability scans were not done to identify the devices that we at risk
• C. There was no risk acceptance review after the risk changed
• D. The employees failed to maintain their devices at the most current software version

Answer: C

 

NEW QUESTION 70
Which of the following actions will assist an organization specifically with implementing web application software security?

• A. Providing end-user security training to both internal staff and vendors
• B. Having a plan to scan vulnerabilities of an application prior to deployment
• C. Establishing network activity baselines among public-facing servers
• D. Making sure that all hosts are patched during regularly scheduled maintenance

Answer: B

 

NEW QUESTION 71
Which of the following best describes the CIS Controls?

• A. Technical, administrative, and policy controls based on current regulations and security best practices
• B. Technical controls designed to augment the NIST 800 series
• C. Technical, administrative, and policy controls based on research provided by the SANS Institute
• D. Technical controls designed to provide protection from the most damaging attacks based on current threat data

Answer: D

 

NEW QUESTION 72
......

Certification Topics of GIAC GCCC Exam

Certification Topics of GIAC GCCC Exam with different percentages:

• v8 Application Software Security 34%
• v8 Inventory and Control of Software -Assets 10%
• v 8 Network Monitoring and Defense 27 %
• v8 Secure Configuration of Enterprise Assets and Software 26 %
• v8 Network Infrastructure Management 24 %
• v 8 Incident Response Management 24 %
• v8 Security Awareness and Skills Training 14%
• v8 Continuous Vulnerability Management 23%
• v8 Malware Defenses 21%
• v8 Data Protection 10% v8 Data Recovery 35%

 

New (2022) GIAC GCCC Exam Dumps: https://www.dumpexams.com/GCCC-real-answers.html

GCCC Practice Dumps - Verified By Dumpexams Updated 95 Questions: https://drive.google.com/open?id=18ufuXhKBaWCwol1MZLad3q4Ar6O_jlMM