An engineering team is developing and deploying a fleet of mobile devices to be used for
specialized inventory management purposes. These devices should:
* Be based on open-source Android for user familiarity and ease.
* Provide a single application for inventory management of physical assets.
* Permit use of the camera be only the inventory application for the purposes of scanning
* Disallow any and all configuration baseline modifications.
* Restrict all access to any device resource other than those requirement ?

A security analyst is researching containerization concepts for an organization. The analyst
is concerned about potential resource exhaustion scenarios on the Docker host due to a
single application that is overconsuming available resources.
Which of the following core Linux concepts BEST reflects the ability to limit resource
allocation to containers?

A security engineer has been asked to close all non-secure connections from the corporate network. The engineer is attempting to understand why the corporate UTM will not allow users to download email via IMAPS. The engineer formulates a theory and begins testing by creating the firewall ID 58, and users are able to download emails correctly by using IMAP instead. The network comprises three VLANs:

Which of the following should the security engineer do to ensure IMAPS functions properly
on the corporate user network?

A financial institution has several that currently employ the following controls:
* The severs follow a monthly patching cycle.
* All changes must go through a change management process.
* Developers and systems administrators must log into a jumpbox to access the servers
hosting the data using two-factor authentication.
* The servers are on an isolated VLAN and cannot be directly accessed from the internal
production network.
An outage recently occurred and lasted several days due to an upgrade that circumvented
the approval process. Once the security team discovered an unauthorized patch was
installed, they were able to resume operations within an hour. Which of the following should
the security administrator recommend to reduce the time to resolution if a similar incident
occurs in the future?

Which of the following controls primarily detects abuse of privilege but does not prevent it?

A cybersecurity engineer analyst a system for vulnerabilities. The tool created an OVAL.
Results document as output. Which of the following would enable the engineer to interpret
the results in a human readable form? (Select TWO.)

A company is outsourcing to an MSSP that performs managed detection and response
services. The MSSP requires a server to be placed inside the network as a log aggregate
and allows remote access to MSSP analyst. Critical devices send logs to the log
aggregator, where data is stored for 12 months locally before being archived to a
multitenant cloud. The data is then sent from the log aggregate to a public IP address in the
MSSP datacenter for analysis.

A security engineer is concerned about the security of the solution and notes the following.
* The critical devise send cleartext logs to the aggregator.
* The log aggregator utilize full disk encryption.
* The log aggregator sends to the analysis server via port 80.
* MSSP analysis utilize an SSL VPN with MFA to access the log aggregator remotely.
* The data is compressed and encrypted prior to being achieved in the cloud.
Which of the following should be the engineer’s GREATEST concern?

As part of the customer registration process to access a new bank account, customers are
required to upload a number of documents, including their passports and driver’s licenses.
The process also requires customers to take a current photo of themselves to be compared
against provided documentation.
Which of the following BEST describes this process?