















Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
ALBERTA NETWORK SECURITY ENGINEER EXAM QUESTIONS AND CORRECT ANSWER (VERIFIED ANSWERS) PLUS RATIONALE 2026 Q&A|INSTANT DOWNLOAD PDF
Typology: Exams
1 / 23
This page cannot be seen from the preview
Don't miss anything!
















1. What is the primary goal of network security engineering? A. Increase bandwidth B. Protect network infrastructure from unauthorized access and attacks C. Improve CPU speed D. Reduce storage usage Answer: B Rationale: Network security engineering focuses on confidentiality, integrity, and availability of network resources. 2. What does the OSI model provide? A. Encryption method B. Framework for network communication layers C. Firewall rules D. Data compression Answer: B Rationale: The OSI model standardizes network communication into layers for design and troubleshooting. 3. Which OSI layer handles routing? A. Layer 2 B. Layer 3 C. Layer 4 D. Layer 7 Answer: B Rationale: The network layer (Layer 3) manages logical addressing and routing.
4. What is a VLAN used for? A. Encryption B. Logical network segmentation C. DNS resolution D. Packet routing Answer: B Rationale: VLANs isolate network segments to improve security and performance. 5. What is network segmentation? A. Combining networks B. Dividing network into isolated segments C. Increasing bandwidth D. Encrypting traffic Answer: B Rationale: Segmentation reduces lateral movement of attackers. 6. What is a firewall rule? A. Backup policy B. Instruction controlling network traffic C. Encryption key D. Log file Answer: B Rationale: Firewall rules define allowed or blocked traffic. 7. What is a stateful firewall? A. Ignores traffic state B. Tracks connection state C. Only filters IP addresses D. Only filters ports Answer: B Rationale: Stateful firewalls analyze the context of traffic flows.
12. What is ARP poisoning? A. Encrypting ARP B. Sending false ARP messages C. Blocking ARP D. Compressing ARP Answer: B Rationale: Used in MITM attacks. 13. What is TLS used for? A. Routing B. Encrypting communication C. Logging D. Compression Answer: B Rationale: Secures data in transit. 14. What is IPSec? A. Email protocol B. Secure IP communication suite C. DNS service D. Firewall Answer: B Rationale: Provides encryption and authentication at IP layer. 15. What is a VPN? A. Public network B. Secure encrypted tunnel C. Backup system D. DNS server Answer: B Rationale: Protects data over public networks.
16. What is zero trust architecture? A. Trust internal users B. Never trust, always verify C. Disable authentication D. Open access Answer: B Rationale: Every request must be authenticated and authorized. 17. What is least privilege? A. Full access B. Minimum required access C. No access D. Public access Answer: B Rationale: Reduces attack surface. 18. What is DDoS mitigation? A. Increasing traffic B. Preventing overload attacks C. Encrypting data D. Logging traffic Answer: B Rationale: Protects service availability. 19. What is IDS? A. Intrusion Detection System B. Internet Data Service C. Internal Data Storage D. Integrated Device Security Answer: A Rationale: Detects suspicious activity.
Answer: B Rationale: Improves availability and resilience.
24. What is high availability? A. System downtime B. Continuous system uptime C. Encryption only D. Backup only Answer: B Rationale: Ensures service reliability. 25. What is redundancy? A. Removing systems B. Duplicate systems for reliability C. Encryption method D. Logging method Answer: B Rationale: Prevents single points of failure. 26. What is packet filtering? A. Encryption B. Inspecting packets against rules C. Backup process D. Compression Answer: B Rationale: Core firewall function. 27. What is deep packet inspection? A. Ignoring packet content B. Inspecting packet payload C. Encrypting packets D. Routing packets
Answer: B Rationale: Provides detailed traffic analysis.
28. What is SSL inspection? A. Blocking SSL B. Decrypting and inspecting encrypted traffic C. Encrypting traffic D. Routing traffic Answer: B Rationale: Detects hidden threats. 29. What is network baseline? A. Attack pattern B. Normal traffic behavior C. Encryption key D. Backup file Answer: B Rationale: Used to detect anomalies. 30. What is anomaly detection? A. Normal traffic B. Identifying unusual patterns C. Encrypting traffic D. Blocking traffic Answer: B Rationale: Detects unknown threats.
D. Routing internal traffic Answer: B Rationale: Forward proxies manage outbound client traffic.
D. Routing packets Answer: B Rationale: Used for both troubleshooting and malicious interception.
D. Routing ports Answer: B Rationale: Used for analysis and intrusion detection.
D. Logging traffic Answer: B Rationale: WPA3 improves protection against brute-force attacks.
D. Switch Answer: B Rationale: Enables trust in PKI systems.
Answer: A Rationale: Enforces cloud security policies.
64. What is SASE? A. Secure Access Service Edge B. System Access Secure Engine C. Security Application Service Endpoint D. Secure Authentication Service Engine Answer: A Rationale: Combines networking and security services. 65. What is DNS filtering? A. Encrypting DNS B. Blocking malicious domains C. Routing DNS D. Logging DNS Answer: B Rationale: Prevents access to harmful sites. 66. What is threat intelligence integration? A. Backup system B. Using external threat data C. Encryption method D. Firewall rule Answer: B Rationale: Improves detection accuracy. 67. What is network visibility? A. Ignoring traffic B. Monitoring all network activity C. Encrypting logs D. Blocking users
Answer: B Rationale: Analyzes evidence of attacks.
72. What is packet replay attack? A. Encryption B. Re-sending captured packets C. Blocking traffic D. Logging traffic Answer: B Rationale: Used to bypass authentication. 73. What is certificate pinning? A. Removing certificates B. Binding certificates to applications C. Encrypting certificates D. Logging certificates Answer: B Rationale: Prevents MITM attacks. 74. What is PKI? A. Public Key Infrastructure B. Private Key Integration C. Packet Key Index D. Protocol Key Interface Answer: A Rationale: Manages digital certificates. 75. What is forward secrecy? A. Key reuse B. Session keys not compromised if long-term key leaks C. Encryption removal D. Backup encryption
Answer: B Rationale: Protects past communications.
76. What is threat modeling in networks? A. Malware creation B. Identifying attack paths C. Encryption method D. Backup system Answer: B Rationale: Predicts vulnerabilities. 77. What is network policy enforcement? A. Ignoring rules B. Applying security policies C. Encrypting traffic D. Deleting logs Answer: B Rationale: Ensures compliance. 78. What is zero-day attack? A. Known vulnerability B. Unknown vulnerability exploit C. Backup system D. Encryption method Answer: B Rationale: No patch exists. 79. What is secure routing? A. Open routing B. Protecting routing protocols C. Blocking routing D. Logging routing