CS0-002 Free Practice Test

- (Exam Topic 1)
A company recently experienced a break-in whereby a number of hardware assets were stolen through unauthorized access at the back of the building. Which of the following would BEST prevent this type of theft from occurring in the future?

1. A. Motion detection
2. B. Perimeter fencing
3. C. Monitored security cameras
4. D. Badged entry

Correct Answer: A

- (Exam Topic 3)
Which of the following factors would determine the regulations placed on data under data sovereignty laws?

1. A. What the company intends to do with the data it owns
2. B. The company's data security policy
3. C. The type of data the company stores
4. D. The data laws of the country in which the company is located

Correct Answer: D

- (Exam Topic 1)
A product manager is working with an analyst to design a new application that will perform as a data analytics platform and will be accessible via a web browser. The product manager suggests using a PaaS provider to host the application.
Which of the following is a security concern when using a PaaS solution?

1. A. The use of infrastructure-as-code capabilities leads to an increased attack surface.
2. B. Patching the underlying application server becomes the responsibility of the client.
3. C. The application is unable to use encryption at the database level.
4. D. Insecure application programming interfaces can lead to data compromise.

Correct Answer: D

- (Exam Topic 2)
Which of the following sources would a security analyst rely on to provide relevant and timely threat information concerning the financial services industry?

1. A. Information sharing and analysis membership
2. B. Open-source intelligence, such as social media and blogs
3. C. Real-time and automated firewall rules subscriptions
4. D. Common vulnerability and exposure bulletins

Correct Answer: A

- (Exam Topic 2)
A general contractor has a list of contract documents containing critical business data that are stored at a public cloud provider. The organization’s security analyst recently reviewed some of the storage containers and discovered most of the containers are not encrypted. Which of the following configurations will provide the MOST security to resolve the vulnerability?

1. A. Upgrading TLS 1.2 connections to TLS 1.3
2. B. Implementing AES-256 encryption on the containers
3. C. Enabling SHA-256 hashing on the containers
4. D. Implementing the Triple Data Encryption Algorithm at the file level

Correct Answer: B