Exactprep ECSAv10 Questions

EC-Council Certified Security Analyst (ECSA) v10 : Penetration Testing Questions and Answers

Question 17

Many security and compliance projects begin with a simple idea: assess the organization's risk, vulnerabilities, and breaches. Implementing an IT security risk assessment is critical to the overall security posture of any organization.

An effective security risk assessment can prevent breaches and reduce the impact of realized breaches.

What is the formula to calculate risk?

Options:

Risk = Budget x Time

Risk = Goodwill x Reputation

Risk = Loss x Exposure factor

Risk = Threats x Attacks

Question 18

You work as an IT security auditor hired by a law firm in Boston. You have been assigned the responsibility to audit the client for security risks. When assessing the risk to the clients network, what step should you take first?

Options:

Analyzing, categorizing and prioritizing resources

Evaluating the existing perimeter and internal security

Checking for a written security policy

Analyzing the use of existing management and control architecture

Question 19

TCP/IP provides a broad range of communication protocols for the various applications on the network. The TCP/IP model has four layers with major protocols included within each layer. Which one of the following protocols is used to collect information from all the network devices?

Options:

Simple Network Management Protocol (SNMP)

Network File system (NFS)

Internet Control Message Protocol (ICMP)

Transmission Control Protocol (TCP)

Question 20

Identify the type of firewall represented in the diagram below:

Options:

Stateful multilayer inspection firewall

Application level gateway

Packet filter

Circuit level gateway

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

EC-Council Certified Security Analyst (ECSA) v10 : Penetration Testing Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer: