A financial services firm is migrating its on-premises data center to a hybrid cloud model. The security architect needs to explain the primary difference in traffic flow inspection requirements. Which statement accurately describes the shift in focus for security policies in this new environment?
A SOC analyst is reviewing logs from a newly deployed Next-Generation Firewall (NGFW). The primary advantage of this NGFW over the legacy stateful firewall it replaced is its ability to create policies based on what criteria?
A university is implementing a Zero Trust architecture. Which of the following principles are core tenets of this security model? (Select TWO)
True or False: In the cloud shared responsibility model for Infrastructure as a Service (IaaS), the cloud provider is responsible for patching the operating systems of the virtual machines created by the customer.
A junior security analyst is tasked with investigating a high-priority alert. After extensive analysis, the analyst determines that the activity flagged by the security tool was legitimate, authorized user behavior. How should this alert be classified?
A remote employee reports being unable to access internal company resources. A network administrator determines the employee needs a secure, encrypted connection over the public internet to the corporate network. Which technology is specifically designed for this purpose?
An organization wants to prevent sensitive data, such as credit card numbers and social security numbers, from being exfiltrated from their network via email or web uploads. Which security technology is specifically designed to inspect outbound traffic for such content and block it based on policy?
A security team is analyzing an attack that successfully compromised a web server. The investigation revealed the following sequence of events: 1) The attacker identified open ports on the server. 2) The attacker used a known software flaw to gain access. 3) The attacker installed a persistent backdoor. 4) The attacker began exfiltrating data. In which stage of the cyber attack lifecycle did the attacker use the known software flaw?
What is the key difference between single-factor authentication (SFA) and multi-factor authentication (MFA)?
A DevOps team is adopting a CI/CD pipeline to automate application deployment to the cloud. What is the primary security benefit of integrating security checks into this pipeline (a practice known as DevSecOps)?