1. Which of the following represents significant technical controls for securing a SAN storage infrastructure? (Choose two).(Select 2answers)

A) Synchronous copy of data
B) Port mapping
C) RAID configuration
D) Storage pool space allocation
E) LUN masking / mapping
F) Data de-duplication

2. An attacker to create a DoS event against the VoIP system of a company. The attacker uses a tool for the network to flood a large number of SIP INVITE traffic. Which of the following would be least likely to thwart such an attack?

A) None
B) Create separate VLANs for voice and data traffic
C) Install IDS / IPS systems on the network
D) Force encrypt all SIP communications
E) Implement of QoS parameters on the switches


3. To reduce costs, improve employee satisfaction, is a big company creating a BYOD policy. It will have access to e-mail and remote connections to enable business venture of personal devices; provided that they are on an approved list of devices. Which of the following security measures would be most effective in securing the company under the new policy? (Choose two).(Select 2answers)

A) Require smart card authentication for all devices.
B) Encrypt data during transmission for remote access.
C) Deploy NAC restrict access to unsafe devices.
D) time of day restrictions on personal devices.
E) Provide free email software for personal devices.


4. Joe is a security architect in charge of choosing a new NIPS platform that the possibility SSL inspection, analysis to be implemented is up to 10Gbps of traffic can be managed centrally and reveals only inspected application payload data to specified internal staff safety. Which of the following steps to take Joe to achieve the desired result?

A) Evaluate relevant RFC and ISO standards to a suitable vendor product to choose. Research industry surveys, interview customers of the product and then recommend the product to be purchased.
B) Consider outsourcing the product evaluation and ongoing management to an external service provider on the grounds that any of the requirements are met and a lower total cost of ownership (TCO) is achieved.
C) Choose a popular NIPS product and consider outsourcing of daily management device to a cloud provider. Access to internal staff safety, so they can inspect the application data payload.
D) Research into new technology providers to look for potential products. Contribute to an RFP and evaluate RFP responses so the vendor product to all the prescribed requirements. Test the product and a product recommendation.
E) None


5. XYZ Company provides cable television service to different regional areas. They are currently installing fiber-to-the-home in many areas with the hope of also providing telephone and Internet services. The telephone and internet parts of the business will each subsidiaries of the parent. The Board of Directors wishes to retain the separate branches of the parent company. However, all three will business customers share data for the accounting, billing and customer verification. The solution is to use open standards, and are easy and seamless for customers, while only parts of a minimum data between companies. Which of the following is most appropriate for this scenario?

A) The companies have a federation, the parent becoming the IdP and the subsidiaries becoming an SSP.
B) The companies have a federation, the parent becoming the SP and the subsidiaries becoming an IdP.
C) None
D) The companies have a federation, the parent becoming the IdP and the subsidiaries becoming an SP.
E) The companies have a federation, the parent becoming the ASP and its subsidiaries becoming an IdP.