20 November, 2020

A Review Of Simulation 312-38 Study Guide

Want to know Actualtests 312-38 Exam practice test features? Want to lear more about EC-Council EC-Council Network Security Administrator (ENSA) certification experience? Study Printable EC-Council 312-38 answers to Rebirth 312-38 questions at Actualtests. Gat a success with an absolute guarantee to pass EC-Council 312-38 (EC-Council Network Security Administrator (ENSA)) test on your first attempt.

Free demo questions for EC-Council 312-38 Exam Dumps Below:

Page: 1 / 27

Total 330 questions Full Exam Access

Question 1

Identify the correct statements regarding a DMZ zone:

It is a file integrity monitoring mechanism

It is a Neutral zone between a trusted network and an untrusted network

It serves as a proxy

It includes sensitive internal servers such as database servers

Question 2

Which of the following Event Correlation Approach checks and compares all the fields systematically and intentionally for positive and negative correlation with each other to determine the correlation across one or multiple fields?

Automated Field Correlation

Field-Based Approach

Rule-Based Approach

Graph-Based Approach

Question 3

Michael decides to view the-----------------to track employee actions on the organization's network.

Firewall policy

Firewall log

Firewall settings

Firewall rule set

Question 4

Stephanie is currently setting up email security so all company data is secured when passed through email. Stephanie first sets up encryption to make sure that a specific user's email is protected. Next, she needs to ensure that the incoming and the outgoing mail has not been modified or altered using digital signatures. What is Stephanie working on?

Usability

Data Integrity

Availability

Confidentiality

Question 5

John wants to implement a firewall service that works at the session layer of the OSI model. The firewall must also have the ability to hide the private network information. Which type of firewall service is John thinking of implementing?

Application level gateway

Stateful Multilayer Inspection

Circuit level gateway

Packet Filtering

Question 6

Nancy is working as a network administrator for a small company. Management wants to implement a RAID storage for their organization. They want to use the appropriate RAID level for their backup plan that will satisfy the following requirements: 1. It has a parity check to store all the information about the data in multiple drives 2. Help reconstruct the data during downtime. 3. Process the data at a good speed. 4. Should not be expensive. The management team asks Nancy to research and suggest the appropriate RAID level that best suits their requirements. What RAID level will she suggest?

RAID 0

RAID 10

RAID 3

RAID 1

Question 7

Management asked their network administrator to suggest an appropriate backup medium for their backup plan that best suits their organization's need. Which of the following factors will the administrator consider when deciding on the appropriate backup medium?

Capability

Accountability

Extensibility

Reliability

Question 8

Identify the network topology where each computer acts as a repeater and the data passes from one computer to the other in a single direction until it reaches the destination.

Ring

Mesh

Bus

Star

Question 9

You are responsible for network functions and logical security throughout the corporation. Your company has over 250 servers running Windows Server 2012, 5000 workstations running Windows 10, and 200 mobile users working from laptops on Windows 8. Last week 10 of your company's laptops were stolen from a salesman, while at a conference in Barcelona. These laptops contained proprietary company information.
While doing a damage assessment, a news story leaks about a blog post containing information about the stolen laptops and the sensitive information. What built-in Windows feature could you have implemented to protect the sensitive information on these laptops?

You should have used 3DES.

You should have implemented the Distributed File System (DFS).

If you would have implemented Pretty Good Privacy (PGP).

You could have implemented the Encrypted File System (EFS)

Question 10

Which VPN QoS model guarantees the traffic from one customer edge (CE) to another?

Pipe Model

AAA model

Hub-and-Spoke VPN model

Hose mode

Question 11

Which phase of vulnerability management deals with the actions taken for correcting the discovered vulnerability?

Mitigation

Assessment

Remediation

Verification

Question 12

Management wants to calculate the risk factor for their organization. Kevin, a network administrator in the organization knows how to calculate the risk factor. Certain parameters are required before calculating risk factor. What are they? (Select all that apply) Risk factor =.............X...............X...........

Vulnerability

Impact

Attack

Threat

Question 13

Jason has set a firewall policy that allows only a specific list of network services and deny everything else. This strategy is known as a _______.

Default allow

Default deny

Default restrict

Default access

Question 14

Which of the information below can be gained through network sniffing? (Select all that apply)

Telnet Passwords

Syslog traffic

DNS traffic

Programming errors

Question 15

Identify the spread spectrum technique that multiplies the original data signal with a pseudo random noise spreading code.

FHSS

DSSS

OFDM

ISM

Question 16

Smith is an IT technician that has been appointed to his company's network vulnerability assessment team. He is the only IT employee on the team. The other team members include employees from Accounting, Management, Shipping, and Marketing. Smith and the team members are having their first meeting to discuss how they will proceed. What is the first step they should do to create the network vulnerability assessment plan?

Their first step is to analyze the data they have currently gathered from the company or interviews.

Their first step is to make a hypothesis of what their final findings will be.

Their first step is to create an initial Executive report to show the management team.

Their first step is the acquisition of required documents, reviewing of security policies and compliance.

Question 17

Blake is working on the company's updated disaster and business continuity plan. The last section of the plan covers computer and data incidence response. Blake is outlining the level of severity for each type of incident in the plan. Unsuccessful scans and probes are at what severity level?

High severity level

Extreme severity level

Mid severity level

Low severity level

Question 18

Daniel is giving training on designing and implementing a security policy in the organization. He is explaining the hierarchy of the security policy which demonstrates how policies are drafted, designed and implemented.
What is the correct hierarchy for a security policy implementation?

Laws, Policies, Regulations, Procedures and Standards

Regulations, Policies, Laws, Standards and Procedures

Laws, Regulations, Policies, Standards and Procedures

Procedures, Policies, Laws, Standards and Regulations

Question 19

A company has the right to monitor the activities of their employees on different information systems according to the _______ policy.

Information system

User access control

Internet usage

Confidential data

Question 20

Which of the following acts as a verifier for the certificate authority?

Certificate Management system

Certificate authority

Directory management system

Registration authority

Page: 1 / 27

Total 330 questions Full Exam Access