2013年10月28日星期一

Le matériel de formation de l'examen de meilleur GIAC G2700

On peut voir que beaucoup de candidats ratent le test GIAC G2700 quand même avec l'effort et beaucoup de temps dépensés. Cest une bonne preuve que le test GIAC G2700 est difficile à réussir. Pass4Test offre le guide d'étude bien fiable. Sauf le test GIAC G2700, Pass4Test peut offrir les Q&As des autres test Certification IT.

La partie plus nouvelle de test Certification GIAC G2700 est disponible à télécharger gratuitement dans le site de Pass4Test. Les exercices de Pass4Test sont bien proches de test réel GIAC G2700. En comparaison les Q&As dans les autres sites, vous trouverez que les nôtres sont beaucoup plus complets. Les Q&As de Pass4Test sont tout recherchés par les experts de Pass4Test, y compris le test simulation.

Selon les anciens test GIAC G2700, la Q&A offerte par Pass4Test est bien liée avec le test réel.

Vous aurez une assurance 100% à réussir le test GIAC G2700 si vous choisissez le produit de Pass4Test. Si malheuresement, vous ne passerez pas le test, votre argent seront tout rendu.

Code d'Examen: G2700
Nom d'Examen: GIAC (GIAC Certified ISO-2700 Specialist Practice Test)
Questions et réponses: 453 Q&As

G2700 Démo gratuit à télécharger: http://www.pass4test.fr/G2700.html

NO.1 CORRECT TEXT
Fill in the blank with the appropriate term.
________ is a powerful and low-interaction open source honeypot.
Answer: Honeyd

certification GIAC   G2700   G2700 examen   G2700 examen   G2700

NO.2 Which of the following controls are administrative in nature?
A. Directive controls
B. Recovery controls
C. Preventive controls
D. Detective controls
Answer: A

GIAC examen   certification G2700   G2700 examen   G2700

NO.3 You work as a Security Administrator for uCertify Inc. You have been assigned the task to verify the
identity of the employees recruited in your organization. Which of the following components of security
deals with an employee's verification in the organization?
A. Network Security
B. Physical security
C. Access security
D. Human resource security
Answer: D

GIAC   G2700   G2700   G2700   G2700 examen

NO.4 Which of the following are the exceptions of the Data Protection Act?
Each correct answer represents a complete solution. Choose all that apply.
A. Section 36 - Domestic purposes
B. Section 28 - National security
C. Section 55 - Unlawful obtaining of personal data
D. Section 29 - Crime and taxation
Answer: A,B,D

GIAC   G2700   certification G2700   G2700   G2700

NO.5 A project plan includes the Work Breakdown Structure (WBS) and cost estimates. Which of the following
are the parts of a project plan?
Each correct answer represents a complete solution. Choose all that apply.
A. Risk identification
B. Security Threat
C. Project schedule
D. Team members list
E. Risk analysis
Answer: A,C,D,E

GIAC examen   G2700 examen   G2700   G2700   G2700

NO.6 Which of the following should be considered while calculating the costs of the outage?
Each correct answer represents a complete solution. Choose all that apply.
A. Sales aspect of the business
B. Cost of low productivity
C. Innovations in electronic funds transfer
D. Cost of lost income from missed sales
Answer: B,D

GIAC examen   certification G2700   G2700   certification G2700

NO.7 Mark works as a Network Security Administrator for uCertify Inc. He has been assigned the task of
installing a MySQL server. Mark wants to monitor only the data that is directed to or originating from the
server and he also wants to monitor running processes, file system access and integrity, and user logins
for identifying malicious activities. Which of the following intrusion detection techniques will Mark use to
accomplish the task?
A. Network-based IDS
B. Signature-based IDS
C. Anomaly-based IDS
D. Host-based IDS
Answer: D

GIAC   G2700   G2700   G2700   G2700 examen

NO.8 The disciplined and structured process, that integrates information security and risk management
activities into the System Development Life Cycle, is provided by the risk management framework.
Choose the appropriate RMF steps.
A.
Answer: A

GIAC   G2700 examen   G2700   G2700   certification G2700   certification G2700

NO.9 Mark works as an Office Assistant for uCertify Inc. He is responsible for managing office documents.
Today, after opening a word document, Mark noticed that the other opened documents are closed
suddenly. After reopening those documents, Mark found some modifications in the documents. He
contacted his Security Administrator and came to know that there is a virus program installed in the
operating system. Which of the following types of virus has attacked the operating system?
A. Data file
B. Macro
C. Polymorphic
D. Boot sector
Answer: A

GIAC   G2700   G2700   G2700

NO.10 You work as a Network Administrator for uCertify Inc. The organization has constructed a cafeteria for
their employees and you are responsible to select the access control method for the cafeteria.
There are a few conditions for giving access to the employees, which are as follows:
1. Top level management can get access any time.
2. Staff members can get access during the specified hours.
3. Guests can get access only in working hours.
Which of the following access control methods is suitable to accomplish the task?
A. Discretionary access control
B. Lattice-based access control
C. Attribute-based access control
D. Rule-based access control
Answer: D

GIAC   G2700 examen   certification G2700   G2700 examen

NO.11 Which of the following is a Restrict Anonymous registry value that allows users with explicit
anonymous permissions?
A. 2
B. 3
C. 1
D. 0
Answer: A

GIAC   G2700 examen   certification G2700   G2700

NO.12 Which of the following phases of the PDCA model is the monitoring and controlling phase of the
Information Security Management System (ISMS)?
A. Check
B. Plan
C. Do
D. Act
Answer: A

GIAC examen   certification G2700   G2700   certification G2700

NO.13 Mark works as a Network Security Administrator for uCertify Inc. An employee of the organization
comes to Mark and tells him that a few months ago, the employee had filled an online bank form due to
some account related work. Today, when again visiting the site, the employee finds that some of his
personal information is still being displayed in the webpage. Which of the following types of cookies
should be disabled by Mark to resolve the issue?
A. Session
B. Temporary
C. Secure
D. Persistent
Answer: D

certification GIAC   G2700   G2700   G2700

NO.14 Which of the following statements are true about security risks?
Each correct answer represents a complete solution. Choose three.
A. These are considered as an indicator of threats coupled with vulnerability.
B. These can be removed completely by taking proper actions.
C. These can be mitigated by reviewing and taking responsible actions based on possible risks.
D. These can be analyzed and measured by the risk analysis process.
Answer: A,C,D

certification GIAC   G2700   certification G2700   G2700   G2700

NO.15 You work as an Information Security Manager for uCertify Inc. You are working on the
documentation of control A.10.1.1. What is the purpose of control A.10.1.1.?
A. It is concerned with the documentation of the human resource security to make recruitments clear to
the organization.
B. It is concerned with the documentation of the supply chain management.
C. It is concerned with the documentation of operating procedures to ensure the correct and secure use of
information processing facilities.
D. It is concerned with the documentation of the disaster recovery management to ensure proper backup
technologies.
Answer: C

GIAC   G2700 examen   G2700 examen   G2700   G2700 examen

NO.16 Which of the following is a fast-emerging global sector that advises individuals and corporations on
how to apply the highest ethical standards to every aspect of their business?
A. Service Capacity Management (SCM)
B. Business Capacity Management (BCM)
C. Resource Capacity Management (RCM)
D. Integrity Management Consulting
Answer: D

GIAC   G2700   certification G2700   G2700

NO.17 You work as an Information Security Officer for uCertify Inc. You need to create an asset management
plan differentiating fixed assets from inventory items. How will you differentiate assets from inventory
items?
A. Inventory items are sold.
B. Assets are temporary usually.
C. Inventory items are permanent.
D. Assets cannot be used.
Answer: A

GIAC   G2700   G2700   G2700   G2700 examen

NO.18 Which of the following is used for secure financial transactions over the Internet?
A. ATM
B. VPN
C. SSL
D. SET
Answer: D

certification GIAC   certification G2700   G2700   G2700   G2700 examen   G2700 examen

NO.19 You work as an Information Security Manager for uCertify Inc. You need to make the
documentation on change management. What are the advantages of change management?
Each correct answer represents a complete solution. Choose all that apply.
A. Improved productivity of users due to more stable and better IT services
B. Improved IT personnel productivity, since there is a reduced number of urgent changes and a back-out
of erroneous changes
C. Improved adverse impact of changes on the quality of IT services
D. Increased ability to absorb frequent changes without making an unstable IT environment
Answer: A,B,D

GIAC examen   G2700   G2700   G2700   G2700

NO.20 Mark works as a System Administrator for uCertify Inc. He is responsible for securing the network of
the organization. He is configuring some of the advanced features of the Windows firewall so that he can
block the client machine from responding to pings. Which of the following advanced setting types should
Mark change for accomplishing the task?
A. ICMP
B. SNMP
C. UDP
D. SMTP
Answer: A

GIAC   certification G2700   G2700   G2700   G2700

NO.21 Which of the following is the designing phase of the ISMS?
A. Check
B. Plan
C. Act
D. Do
Answer: B

GIAC   G2700   G2700   G2700 examen

NO.22 Rick works as a Computer Forensic Investigator for BlueWells Inc. He has been informed that some
confidential information is being leaked out by an employee of the company. Rick suspects that someone
is sending the information through email. He checks the emails sent by some employees to other
networks. Rick finds out that Sam, an employee of the Sales department, is continuously sending text files
that contain special symbols, graphics, and signs. Rick suspects that Sam is using the Steganography
technique to send data in a disguised form. Which of the following techniques is Sam using?
Each correct answer represents a part of the solution. Choose all that apply.
A. Linguistic steganography
B. Text Semagrams
C. Technical steganography
D. Perceptual masking
Answer: A,B

GIAC   certification G2700   G2700

NO.23 Which of the following administrative policy controls is usually associated with government
classifications of materials and the clearances of individuals to access those materials?
A. Separation of Duties
B. Due Care
C. Acceptable Use
D. Need to Know
Answer: D

GIAC   certification G2700   G2700   G2700   G2700

NO.24 Which of the following are the basics of Business Continuity Management?
Each correct answer represents a complete solution. Choose all that apply.
A. Implementation of a risk assessment technique to identify the causes and consequences of failures
B. Regular checking of business continuity plans
C. Identification of authentication techniques according to the requirements
D. Identification of human resources according to the requirements
Answer: A,B,D

GIAC   certification G2700   certification G2700

NO.25 You work as the Human Resource Manager for uCertify Inc. You need to recruit some candidates for
the marketing department of the organization. Which of the following should be defined to the new
employees of the organization before they have joined?
Each correct answer represents a complete solution. Choose all that apply.
A. Marketing tips and tricks
B. Organization's network topology
C. Job roles
D. Organization's security policy
Answer: C,D

GIAC examen   certification G2700   G2700   certification G2700

NO.26 CORRECT TEXT
Fill in the blank with an appropriate phrase.
_________accord describes the minimum regulatory capital to be allocated by each bank based on its
risk profile of assets.
Answer: Basel ll

certification GIAC   certification G2700   G2700   certification G2700   G2700

NO.27 Qualitative risk analysis includes judgment, intuition, and experience. Which of the following methods
are used to perform qualitative risk analysis?
Each correct answer represents a complete solution. Choose all that apply.
A. Egress filtering
B. Checklists
C. Delphi technique
D. Brainstorming
Answer: B,C,D

GIAC   G2700   G2700 examen   G2700   certification G2700   certification G2700

NO.28 You work as an Information Security Manager for uCertify Inc. You are working on communication and
organization management. You need to create the documentation on change management.
Which of the following are the main objectives of change management?
Each correct answer represents a complete solution. Choose all that apply.
A. Minimal disruption of services
B. Reduction of inventory in accordance with revenue
C. Economic utilization of resources involved in the change
D. Reduction in back-out activities
Answer: A,C,D

certification GIAC   certification G2700   G2700 examen   certification G2700

NO.29 Single Loss Expectancy (SLE) represents an organization's loss from a single threat. Which of the
following formulas best describes the Single Loss Expectancy (SLE)?
A. SLE = Asset Value (AV) * Exposure Factor (EF)
B. SLE = Annualized Loss Expectancy (ALE) * Exposure Factor (EF)
C. SLE = Annualized Loss Expectancy (ALE) * Annualized Rate of Occurrence (ARO)
D. SLE = Asset Value (AV) * Annualized Rate of Occurrence (ARO)
Answer: A

GIAC examen   G2700 examen   G2700 examen

NO.30 Which of the following are the uses of cryptography as defined in a policy document?
Each correct answer represents a complete solution. Choose all that apply.
A. Backup
B. Control of keys
C. Applications supporting cryptography
D. Recovery
Answer: A,B,C

certification GIAC   G2700 examen   G2700 examen   G2700 examen   G2700   G2700

Chaque expert dans l'équipe de Pass4Test ont son autorité dans cette industrie. Ils profitent ses expériences et ses connaissances professionnelles à préparer les documentations pour les candidats de test Certification IT. Les Q&As produites par Pass4Test ont une haute couverture des questions et une bonne précision des réponses qui vous permettent la réussie de test par une seule fois. D'ailleurs, un an de service gratuit en ligne après vendre est aussi disponible pour vous.

没有评论:

发表评论