PALO PCCET

True or False: Business intelligence (BI) software consists of tools and techniques used to surface large amounts of raw unstructured data to perform a variety of tasks, including data mining, event processing, and predictive analytics. - answer-True. True or False: The process in which end users find personal technology and apps that are more powerful or capable, more convenient, less expensive, quicker to install, and easier to use than enterprise IT solutions is known as consumerization. - answer-True. Which action is associated with Web 1.0? A. checking CNN's website for news B. posting on Facebook C. adding information to Wikipedia D. asking Apple's Siri a question - answer-A. checking CNN's website for news Which action is associated with Web 3.0? A. Checking CNN's website for news B. posting on Facebook C. adding information to Wikipedia D. asking Apple's Siri a question - answer-D. asking Apple's Siri a question Gmail is associated with which cloud computing model? A. SaaS B. PaaS C. IaaS D. DaaS - answer-A. SaaS Which two port numbers are associated with HTTP? (Choose two.) A. 80 B. 389 C. 8080 D. 25 - answer-A. 80 C. 8080 Which port number is associated with HTTPS? A. 21 B. 23 C. 443 D. 53 - answer-C. 443 Which port is used for encrypted communication? A. 22 B. 80 C. 389 D. 25 - answer-A. 22 Which protocol distinguishes between applications using port numbers? A. TCP B. ICMP C. ESP D. UDP - answer- How do attackers prevent port scans from being noticed by monitoring software? A. scan ports so quickly it is finished before it can be detected and stopped B. scan ports so slowly it looks like random attempts to connect, rather than a concerted attack C. scan ports from an internal device D. scan ports through WiFi instead of Ethernet - answer-A. scan ports so quickly it is finished before it can be detected and stopped Which potentially risky attributes is the most serious? A. pervasive B. malware C. excessive bandwidth D. tunnels - answer-B. malware Which application can be used as a tunnel for other applications? A. Telnet B. SMTP C. HTTPS D. SSH - answer-D. SSH Which two devices or systems require the configuration of non-standard ports to be able to use an application on a non-standard port? (Choose two.) A. firewall B. client C. server D. operating system E. certificate - answer-B. client C. server . If you are responsible for the application's security but not the operating system's security, which cloud computing service model are you using? A. your own data center B. IaaS C. PaaS D. SaaS - answer-C. PaaS Which kind of security always is the responsibility of the cloud customer? A. physical B. network C. application D. data - answer-D. data Where is your data typically stored in a SaaS application? A. in your data center, in a database under your control B. in your data center, in a database controlled by the SaaS provider C. in the cloud, in a database you control D. in the cloud, in a database controlled by the SaaS provider - answer-D. in the cloud, in a database controlled by the SaaS provider Who is responsible for the security settings in an enterprise SaaS application? A. SaaS provider B. IT administrator of the customer organization C. user, typically an employee of the customer organization D. both IT administrators and users - answer-D. both IT administrators and users When is it impossible to secure SaaS data? A. when a user uses an unmanaged device to access an unsanctioned SaaS instance B. when a user uses a managed device to access an unsanctioned SaaS instance C. when a user uses an unmanaged device to access a sanctioned SaaS instance D. when a user uses a managed device to access a sanctioned SaaS instance - answer-A. when a user uses an unmanaged device to access an unsanctioned SaaS instance True or False? An organization can be compliant with all applicable security and privacy regulations for its industry yet still not be secure. - answer-True Which three data fields are considered personally identifiable information (PII)? Choose three.) A. unique identification number (such as driver's license number) B. honorific (Mr., Mrs., Dr., etc.) C. telephone number D. blood pressure (when not connected to other fields) E. fingerprints - answer-A. unique identification number (such as driver's license number) C. telephone number E. fingerprints Which risk is eliminated in an organization that is 100% compliant? A. having confidential information become public B. having an advanced persistent threat change your information C. having the regulator punish you for being non-compliant D. having malicious insiders steal information - answer-C. having the regulator punish you for being non-compliant What does CVE mean? A. Computer Vulnerabilities and their Exploits B. Computer Vulnerabilities and Exposures C. Common Vulnerabilities and Their Exploits D. Common Vulnerabilities and Exposures - answer-D. Common Vulnerabilities and Exposures What is the difference between CVE and CVSS? A. CVE tells you what the vulnerabilities are. CVSS gives vulnerabilities a score (0-10) to evaluate how serious they are. B. CVE is on a scale of low, medium, high, critical. CVSS is on a scale of 0-100. C. CVSS tells you what the vulnerabilities are. CVE gives vulnerabilities a score (0-10) to evaluate how serious they are. D. CVE is on a scale of 0-100. CVSS is on a scale of 0-10. - answer-A. CVE tells you what the vulnerabilities are. CVSS gives vulnerabilities a score (0-10) to evaluate how serious they are. True or False? External threat actors have accounted for the majority of data breaches over the past five years. - answer-False