Isaca Cybersecurity-Audit-Certificate ISACA Cybersecurity Audit Certificate Exam Practice Test

Answer : C

A firewall is a network security device that monitors and controls incoming and outgoing network traffic based on predetermined security rules. It establishes a barrier between a secure internal network and an untrusted external network, such as the internet. This system is designed to prevent unauthorized access to or from private networks and is a fundamental piece of a comprehensive security framework for any organization.

Answer : D

The best practice to prevent misuse of administrative privileges is to have administrators use a separate non-privileged account for routine tasks that do not require administrative rights. This reduces the risk of accidental changes or security breaches that could occur if the administrator's highly privileged account were compromised or misused during daily operations.

Reference= This control measure is aligned with the principle of least privilege and is commonly recommended in cybersecurity frameworks.While I cannot cite the Cybersecurity Audit Manual directly, similar guidelines are often included in cybersecurity literature and standards, including those from ISACA1. For specific references, please consult the ISACA Cybersecurity Audit resources.

Answer : D

Heuristic-based anti-malware is designed to detect new, previously unknown viruses and exploits by looking for known suspicious behavior patterns or anomalies. Unlike signature-based anti-malware, which relies on a database of known malware signatures, heuristic analysis can identify new threats without prior knowledge of the specific malware, making it more effective against unknown malware.

Answer : A

Answer : C

A full backup involves copying all data to the backup storage location. It is the most comprehensive type of backup, which makes it the most time-consuming. This is because every file and folder is included in the backup, regardless of when it was last modified.

Incremental and differential backups are faster because they only copy data that has changed since the last backup. Incremental backups include data that has changed since the last incremental backup, while differential backups include data that has changed since the last full backup.

Offsite backups refer to the location where the backup is stored rather than the method of backup, so the time required can vary widely depending on the specific circumstances.

Answer : A

The principle of least privilege is a security concept that restricts users' access rights to only what is strictly necessary for their job functions. This control is the most effective in preventing unauthorized data access because it minimizes the chances of users, either intentionally or unintentionally, accessing data they are not authorized to view. It ensures that users are granted the minimum levels of access -- or permissions -- needed to perform their work. This reduces the risk of accidental or deliberate access to sensitive information.

Answer : D

The presence of known dangerous artifacts like malicious IP addresses or domain names on a network typically indicates that a security breach has occurred or is in progress. These artifacts are often recognized as indicators of compromise (IoCs), which are pieces of forensic data, such as system log entries or files, that identify potentially malicious activity on a system or network. Identifying IoCs is crucial for cybersecurity as it allows organizations to detect breaches quickly and respond to them promptly.