Practice Test 1

Results

Score: 76%

69 out of 90 Questions. 21 incorrect.

Practice Test 1 Results

"Security Architecture" and "Security Program Management and Oversight" where my worst scoring sections

Of the missed questions, most of the issues are from not knowing certain acronyms and what they mean. There were also several acronym questions that I guessed correctly on that easily could have been gotten wrong.

Next Steps

  • Review the answers to the missed questions.
  • Research the missed acronyms to better understand what they are.

Missed Question Topics

  • XDR, EDR (OBJ: 4.5)
    • XDR: extended detection and response; detect and respond to sophisticated, multi-vector threats.
    • EDR: Endpoint detection and response; detect, monitor, and respond to threats on endpoints like laptops, desktops, and mobile devices. Provides real time monitoring and reporting.
  • RBAC, DAC, OTP, mTSL (OBJ: 1.2)
    • DAC: Discretionary Access Control; decided by the resource owner
    • RBAC: Role Based Access Control; User role
    • OPT: one time password
    • mTSL: Mutual TLS; auth involving client and server certificates
  • Security Officer vs Security Owner vs Data controller vs Security Custodian. (OBJ: 5.1)
    • Security Officer: Senior level role responsible for directing company wide security operations of an organization
    • Security Custodian: Day to day operations perform in compliance with standards established by the security officer
    • Security Owner: Owner of the certain resource, but not company wide security practices.
    • Data Controller: Position that organizes how data is used and in compliance with regulations. How data is processed.
  • MTTR vs FMEA vs MTBF (OBJ: 5.2)
    • MTTR: Mean time to Repair: Typical time needed to repair and issue
    • MTBF: Mean time between failures: time intervals between failures, indicating reliability of the system
    • FMEA: Failure mode and effects analysis; identify possible failure methods.
  • SLA, MOU, SOW, MSA
  • TCO vs ROI
  • SMTP vs DKIM vs DMARC vs SPF
  • Segmentation vs Isolation
  • Logical Segmentation vs Air-gapped
  • SD-WAN vs IDS, EAP
  • The intended audience of a investigation report is key
  • Access control mechanism dynamic values; rule based vs attribute based
  • SNMP
  • Differential Backups vs Snapshots
  • WEP vs WAP
  • SCAP
  • Account Lockout; dictionary attack, brute force
  • "Hot" Site
  • Difference between insider and shadow IT threat actors
  • Scalability vs Responsiveness

Pre Grade Review

Overall I think I did pretty well. I think I have a good foundation that has me on a solid footing, even if I'm not sure of the answer I can infer and I think get close to the correct answer.

A pain point are acronyms that I don't know. Learning those will be necessary.

Below are notes that captured my attention and will be worth reviewing.

I think I got around a 75-80% on this exam. Took me approx 40 min.

Topics I didnt know during this practice exam

  • How much math / calculations is there?
  • HIPS; Hosty Based Intrustion Prevention Systems
  • Horizontal Passweork attack vs Vertical
  • WAP
  • Extended Detection and Response (XDR)
  • Rootkit
  • Average Time between failures for a non-repairable system?
  • SLA
  • Public Key
  • Hash Key
  • Private Key
  • Symmetric Key
  • Worm vs Trojan
  • Exposure Factor
  • SMTP
  • CVSS
  • SD-WAN; IDS, EAP, Remote Access
  • SNMP
  • WEP
  • SCAP
  • Firewall
  • Brute Force vs Dictionary Attack
  • Insider Threat vs shadow IT threat Actor
  • OSINT
  • Cryptographic Attacks: Spraying, Downgrade, Collision, Brute Force
  • AUP (Acceptable Use Policy?)
  • Buffer Overflow
  • Bug Bounty Program
  • Enumeration
  • WAF, EAP, Proxy Server on port 8080, UTM
  • Degaussing