St0 095
- 2. ST0-095 Exam Questions
Important Note About ST0-095 PDF
techeXams’ ST0-095 PDF is a comprehensive compilation of questions and answers that have been
developed by our team of certified professionals. In order to prepare for the actual exam, all you
need is to study the content of this exam questions. An average of approximately 10 to 15 hours
should be spent to study these exam questions and you will surely pass your exam. It’s our
guarantee.
Copyright
techeXams holds the copyright of this material. techeXams grants you a limited license to view and
study this material, either for personal or commercial use. Unauthorized reproduction or distribution
of this material, or any portion thereof, may result in severe civil and criminal penalties, and will be
prosecuted to the maximum extent possible under law.
Disclaimer
Neither this guide nor any material in this guide is sponsored, endorsed or affiliated with any of the
respective vendor. All trademarks are properties of their respective owners.
1
© Copyright www.techeXams.ws 2011 ST0-095 Practice Exams, ST0-095 Audio Trainings, ST0-095 Study Guides
- 3. ST0-095 Exam Questions
Question: 1
Which method did the MetaFisher bot use to extract data from a system?
A. RSS
B. FTP
C. peer to peer
D. IRC
Answer: B
Question: 2
What are the three types of scans used to identify systems?
A. port, network, and vulnerability
B. protocol, hardware, and services
C. port, subnet, and client
D. hardware, vulnerability, and virus
Answer: A
Question: 3
Which method would a cybercriminal most likely use in a drive-by download?
A. spam with an attachment
B. whaling with a link to click on
C. SQL injection
D. cross-site request forgery
Answer: D
Question: 4
The security team of a major government agency discovers a breach involving employee
data that has been leaked outside the agency. They discover that a software developer for
2
© Copyright www.techeXams.ws 2011 ST0-095 Practice Exams, ST0-095 Audio Trainings, ST0-095 Study Guides
- 4. ST0-095 Exam Questions
the agency transferred employee data from a secure primary system to a secondary
system, for the purpose of software development and testing. This secondary system was
the target of a hacker. Which type of breach source(s) is this?
A. cybercriminal only
B. malicious insider and cybercriminal
C. cybercriminal and well-meaning insider
D. well-meaning insider only
Answer: C
Question: 5
What does patch management need to accurately target computers within an
environment?
A. a system management software package
B. an accurate software delivery mechanism
C. an endpoint management system
D. an accurate up-to-date inventory
Answer: D
Question: 6
Which action should accompany the automatic relocation of a confidential file on a file
share?
A. running an anti-malwarescan on it to check for threats
B. leaving behind a marker file explaining how to regain access to the file
C. re-routing it to a quarantine folder on the mail server and emailing the sender
D. fixing the access control permissions on the share to limit access
Answer: B
Question: 7
3
© Copyright www.techeXams.ws 2011 ST0-095 Practice Exams, ST0-095 Audio Trainings, ST0-095 Study Guides
- 5. ST0-095 Exam Questions
What are two types of targets that should be scanned to see if they contain confidential
information at rest? (Select two.)
A. firewalls
B. routers
C. file servers
D. encryption gateways
E. databases
Answer: A,B
Question: 8
Which two questions are appropriate to ask a customer in order to uncover a need for
Symantec Control Compliance Suite? (Select two.)
A. Are you meeting your required backup windows?
B. Have you recently gone through a merger or acquisition, requiring new entitlements and
controls?
C. Do you need to archive email for legal discovery purposes?
D. Is your operations team struggling to keep on top of IT audit-related tasks?
E. Do you need to ensure critical servers are deployed by authorized personnel?
Answer: B,D
Question: 9
Which Symantec solution informs an administrator that a particular server has excessive
file system rights?
A. Security Information Manager
B. Altiris IT Management Suite
C. Control Compliance Suite
D. Endpoint Encryption
Answer: C
4
© Copyright www.techeXams.ws 2011 ST0-095 Practice Exams, ST0-095 Audio Trainings, ST0-095 Study Guides
- 6. ST0-095 Exam Questions
Question: 10
What is the name of the Symantec solution designed to develop and enforce IT policies?
A. Security Information Manager
B. Security Compliance Manager
C. Control Compliance Suite
D. IT Policy Suite
Answer: C
Question: 11
Which global trade does the United States Federal Bureau of Investigation (FBI) say is
smaller than the global market for illegally-obtained information, according to the
Security Solutions 1.0 course?
A. illegal drug trade
B. arms trafficking trade
C. human trafficking trade
D. money laundering trade
Answer: A
Question: 12
Which method would a cybercriminal most likely use in a drive-by download?
A. spam with an attachment
B. whaling with a link to click on
C. SQL injection
D. cross-site request forgery
Answer: D
Question: 13
5
© Copyright www.techeXams.ws 2011 ST0-095 Practice Exams, ST0-095 Audio Trainings, ST0-095 Study Guides
- 7. ST0-095 Exam Questions
How can a security professional within an organization become viewed as a business
partner to an executive?
A. by speaking to security roles and processes
B. by articulating risk in terms of financial value
C. by speaking to the fundamentals of security
D. by ensuring that compliance is the top priority
Answer: B
Get Full Version of Exam ST0-095 PDF Q&A
techeXams presents authentic, genuine and valid study material, which promise 100%
success in very first attempt. To take optimal results for ST0-095 exam, you need to buy
full version of ST0-095 question and answer. An average of approximately 10 to 15
hours should be spent to study these exam questions and you will surely pass your
exam. So come join us and quench your thirst for knowledge.
Get complete ST0-095 questions and answers by visiting URL
“http://www.techexams.ws/exams/ST0-095.do”
6
© Copyright www.techeXams.ws 2011 ST0-095 Practice Exams, ST0-095 Audio Trainings, ST0-095 Study Guides