Free Access CuramSoftware.CS0-002.v2022-08-26.q256 Practice Test (Page 6)

Question 21

As part of a review of incident response plans, which of the following is MOST important for an organization to understand when establishing the breach notification period?

A.Legal requirements

B.Service-level agreements

C.Organizational policies

D.Vendor requirements and contracts

Question 22

A security analyst is investigating a compromised Linux server. The analyst issues the ps command and receives the following output:

Which of the following commands should the administrator run NEXT to further analyze the compromised system?

A./bin/ls -l /proc/1301/exe

B.kill -9 1301

C.strace /proc/1301

D.rpm -V openssh-server

Question 23

A team of security analysts has been alerted to potential malware activity. The initial examination indicates one of the affected workstations is beaconing on TCP port 80 to five IP addresses and attempting to spread across the network over port 445.
Which of the following should be the team's NEXT step during the detection phase of this response process?

A.Engage the engineering team to block SMB traffic internally and outbound HTTP traffic to the five IP addresses.

B.Identify potentially affected systems by creating a correlation search in the SIEM based on the network traffic.

C.Escalate the incident to management, who will then engage the network infrastructure team to keep them informed.

D.Depending on system criticality, remove each affected device from the network by disabling wired and wireless connections.

Question 24

Which of the following sources would a security analyst rely on to provide relevant and timely threat information concerning the financial services industry?

A.Open-source intelligence, such as social media and blogs

B.Real-time and automated firewall rules subscriptions

C.Information sharing and analysis membership

D.Common vulnerability and exposure bulletins

Question 25

The help desk has reported that users are reusing previous passwords when prompted to change them.
Which of the following would be the MOST appropriate control for the security analyst to configure to prevent password reuse? (Choose two.)

A.Implement role-based access control within directory services.

B.Deploy Group Policy Objects to domain resources.

C.Deploy a single-sing-on solution for both Windows and Linux hosts.

D.Implement mandatory access control on all workstations.

E.Implement scripts to automate the configuration of PAM on Linux hosts.

Other Version: 1018CompTIA.CS0-002.v2025-03-13.q112; 2450CompTIA.CS0-002.v2024-10-25.q354; 623CompTIA.CS0-002.v2024-09-17.q264; 858CuramSoftware.CS0-002.v2024-02-05.q218; 2242CuramSoftware.CS0-002.v2023-02-13.q163; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 14282CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50

Question 21

Question 22

Question 23

Question 24

Question 25

Download PDF File