CAS-003 문제 56
Which of the following provides the BEST risk calculation methodology?
CAS-003 문제 57
보안 관리자는 새 장비 구매가 포함된 보안 설계의 ROI를 계산하려고 합니다. 장비 비용은 $50,000이며 장비를 설치하고 구성하는 데 50시간이 걸립니다. 관리자는 설치를 위해 시간당 $100의 요율로 계약자를 고용할 계획입니다. 새로운 디자인과 장비를 통해 회사가 첫 해에 매출을 늘리고 추가로 100,000달러를 벌 수 있다고 가정할 때 다음 중 첫 해에 대한 백분율로 표시된 ROI는 무엇입니까?
CAS-003 문제 58
The OS on several servers crashed around the same time for an unknown reason. The servers were restored to working condition, and all file integrity was verified. Which of the following should the incident response team perform to understand the crash and prevent it in the future?
CAS-003 문제 59
A managed service provider is designing a log aggregation service for customers who no longer want to manage an internal SIEM infrastructure. The provider expects that customers will send all types of logs to them, and that log files could contain very sensitive entries. Customers have indicated they want on- premises and cloud-based infrastructure logs to be stored in this new service. An engineer, who is designing the new service, is deciding how to segment customers.
Which of the following is the BEST statement for the engineer to take into consideration?
Which of the following is the BEST statement for the engineer to take into consideration?
CAS-003 문제 60
A security engineer has been hired to design a device that will enable the exfiltration of data from within a well-defended network perimeter during an authorized test. The device must bypass all firewalls and NIDS in place, as well as allow for the upload of commands from a centralized command and control answer. The total cost of the device must be kept to a minimum in case the device is discovered during an assessment. Which of the following tools should the engineer load onto the device being designed?