Online Access Free 156-110 Practice Test

Which of the following is NOT an auditing function that should be performed regularly?

• A.Reviewing system logs
• B.Reviewing IDS alerts
• C.Reviewing IDS logs
• D.Reviewing audit logs
• E.Reviewing performance logs

At ABC Corporation, access to critical information resources, such as database and e-mail servers, is controlled by the information-technology (IT) department. The supervisor in the department grants access to printers where the printer is located. Managers grant and revoke rights to files within their departments' directories on the file server, but the IT department controls who has access to the directories. Which type of access-management system is in use at ABC Corporation?

• A.Role-based access management
• B.Hybrid access management
• C.Decentralized access management
• D.Privileged access management
• E.Centralized access management

_________ is a smaller, enhanced version of the X.500 protocol. It is used to provide directory-service information. (Choose the BEST answer.)

• A.Lightweight Directory Access Protocol
• B.Role-based access control
• C.X.400 Directory Access Protocol
• D.Lightweight Host Configuration Protocol
• E.Access control list

Which of the following is NOT a Business Continuity Plan (BCP) recovery strategy?

• A.Manual procedures; alternative solution to technology available
• B.Deferring action; action waiting until a later date
• C.Delegating risk to another entity, such as an insurer
• D.Reciprocal agreements with another organization
• E.Doing nothing; no action taken to recover the technology

One individual is selected from each department, to attend a security-awareness course.
Each person returns to his department, delivering the course to the remainder of the department. After training is complete, each person acts as a peer coach. Which type of training is this?

• A.Self-paced training
• B.Formal classroom training
• C.Alternating-facilitator training
• D.On-line training
• E.Train-the-mentor training