Free CS0-002 Exam Braindumps

- (Exam Topic 2)
A large organization wants to move account registration services to the cloud to benefit from faster processing and elasticity. Which of the following should be done FIRST to determine the potential risk to the organization?

1. A. Establish a recovery time objective and a recovery point objective for the systems being moved
2. B. Calculate the resource requirements for moving the systems to the cloud
3. C. Determine recovery priorities for the assets being moved to the cloud-based systems
4. D. Identify the business processes that will be migrated and the criticality of each one
5. E. Perform an inventory of the servers that will be moving and assign priority to each one

Correct Answer: D

- (Exam Topic 1)
A security analyst is reviewing vulnerability scan results and notices new workstations are being flagged as having outdated antivirus signatures. The analyst observes the following plugin output:
Antivirus is installed on the remote host:
Installation path: C:Program FilesAVProductWin32 Product Engine: 14.12.101
Engine Version: 3.5.71
Scanner does not currently have information about AVProduct version 3.5.71. It may no longer be supported. The engine version is out of date. The oldest supported version from the vendor is 4.2.11.
The analyst uses the vendor's website to confirm the oldest supported version is correct. Which of the following BEST describes the situation?

1. A. This is a false positive, and the scanning plugin needs to be updated by the vendor.
2. B. This is a true negative, and the new computers have the correct version of the software.
3. C. This is a true positive, and the new computers were imaged with an old version of the software.
4. D. This is a false negative, and the new computers need to be updated by the desktop team.

Correct Answer: C

- (Exam Topic 2)
The steering committee for information security management annually reviews the security incident register for the organization to look for trends and systematic issues The steering committee wants to rank the risks based on past incidents to improve the security program for next year Below is the incident register for the organization.

Which of the following should the organization consider investing in FIRST due to the potential impact of availability?

1. A. Hire a managed service provider to help with vulnerability management
2. B. Build a warm site in case of system outages
3. C. Invest in a failover and redundant system, as necessary
4. D. Hire additional staff for the IT department to assist with vulnerability management and log review

Correct Answer: C
Both on July 31 and November 24, the organization could not restore multiple days due to missing disaster recovery plan. Therefore, failover systems are very important for this organization.

- (Exam Topic 3)
A company's security team recently discovered a number of workstations that are at the end of life. The workstation vendor informs the team that the product is no longer supported and patches are no longer available The company is not prepared to cease its use of these workstations Which of the following would be the BEST method to protect these workstations from threats?

1. A. Deploy whitelisting to the identified workstations to limit the attack surface
2. B. Determine the system process cntcalrty and document it
3. C. Isolate the workstations and air gap them when it is feasible
4. D. Increase security monitoring on the workstations

Correct Answer: C

- (Exam Topic 3)
A security analyst is reviewing the following Internet usage trend report:

Which of the following usernames should the security analyst investigate further?

1. A. User1
2. B. User 2
3. C. User 3
4. D. User 4

Correct Answer: B