SecurityCenter Fundamentals, Exams of Nursing

Various aspects of the securitycenter platform, including the default login page, plugin updates, scan zones, repositories, asset lists, vulnerability analysis, compliance auditing, dashboards, user roles and permissions, and the relationship between securitycenter and other acas components like nessus and pvs. It provides a comprehensive overview of the key features and functionalities of the securitycenter security and compliance monitoring solution used within the department of defense (dod) networks.

Typology: Exams

2024/2025

Available from 10/16/2024

benz-mickey
benz-mickey 🇺🇸

5

(2)

1.2K documents

1 / 12

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
ACAS - 5.3 Course/ 109 Q&A/ A+ Score
Solutions/ Updated 2024-2025.
Which page loads by default when you log in to SecurityCenter? Select the best answer. -
Answer: Dashboard
Which of the following pages show the date and time of the most recent plugin updates? -
Answer: Plugins, Feeds
Which page allows you to set your local time zone? - Answer: Profile
What is an organization? - Answer: A group of individuals who are responsible for a set of
common assets
What is a scan zone? - Answer: A defined static range of IP addresses with an associated Nessus
scanner(s)
Page 1 of 12
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download SecurityCenter Fundamentals and more Exams Nursing in PDF only on Docsity!

ACAS - 5.3 Course/ 109 Q&A/ A+ Score

Solutions/ Updated 2024-2025.

Which page loads by default when you log in to SecurityCenter? Select the best answer. - Answer: Dashboard Which of the following pages show the date and time of the most recent plugin updates? - Answer: Plugins, Feeds Which page allows you to set your local time zone? - Answer: Profile What is an organization? - Answer: A group of individuals who are responsible for a set of common assets What is a scan zone? - Answer: A defined static range of IP addresses with an associated Nessus scanner(s)

What is the maximum size of a SecurityCenter 5 Repository? - Answer: 32 GB The IP address(es) you are scanning must be contained in both the definition of the scan zone and the definition of the repository. - Answer: True What SecurityCenter role is responsible for setting up scan zones? - Answer: Administrator How can you get your SecurityCenter plugin updates? - Answer: Automatically, from DISA's plugin server, Manually from the DoD Patch Repository The SecurityCenter Plugins menu displays a list of script files used by Nessus and PVS scanners to collect and interpret vulnerability, compliance, and configuration data. - Answer: True Which of the following are options you can consider for scanning stand-alone networks? - Answer: Install both Nessus and SecurityCenter on a Linux Laptop using Kickstart, Install both Nessus and SecurityCenter in virtual machines on a Windows 7 laptop, Detach a Nessus scanner from its SecurityCenter for scanning purposes and then reattach to SecurityCenter to upload scan results Components of an Active Vulnerability Scan consist of: a policy, credentials, scan zone, schedule, _________, and __________. - Answer: Repository, Target list _________ are administrative-level usernames and passwords (or SSH keypairs) used in authenticated scans? - Answer: Credentials You can associate multiple credentials with a single scan. - Answer: True

Which type of asset list updates automatically when a scan runs and a repository is updated? - Answer: Dynamic What is a static asset list? - Answer: A list of IP addresses that require user intervention in order to change what defines them What two ways can you use to add a dynamic asset list? - Answer: Use a template or create a set of rules, Create a set of rules or a scan policy When you create dynamic asset list(s), which of the following occurs? - Answer: SecurityCenter queries the repository(ies) to find assets that match the dynamic asset list's rules. Users in different groups using the same shared asset list could see different IP addresses in the list. - Answer: True What two areas in SecurityCenter allow you to analyze scan results? - Answer: The Scan Results page, The Vulnerabilities page SecurityCenter displays vulnerability data at varying levels and views ranging from the highest level summary down to a detailed vulnerability list. - Answer: True What vulnerabilities are stored in SecurityCenter's Cumulative database? - Answer: Current vulnerabilities, including those that have been recast, accepted, or mitigated and found vulnerable on rescan Which analysis tool provides a list of vulnerabilities that relate to DoD Information Assurance Vulnerability Alerts and Bulletins? - Answer: IAVM Summary

Vulnerability filters are available to search on the following categories. - Answer: Vulnerability Information, Targets, ID Numbers, Dates Frequently used _____________ can be saved as _____________ for use in analysis, dashboards, reports, tickets, and alerts. - Answer: filters, queries Vulnerability results can be exported to a comma-separated file by clicking on _______? - Answer: Options > Export as CSV Which of the following allows you to set an expiration date? - Answer: Accept Risk Which of the following SecurityCenter resources allows you to combine filters to provide customized, saved views of vulnerability scan data? - Answer: Queries PVS monitors data at the _____ layer? - Answer: Packet All of the following are benefits of PVS, except _____. - Answer: Eliminating the need for active scans Which of the following statements is true? - Answer: PVS is capable of highlighting all interactive and encrypted network sessions. A Passive Vulnerability Scanner is simply a Network Intrusion Detection System (NIDS)? - Answer: False Which of the following vulnerability filter settings results in viewing only vulnerabilities detected by PVS. - Answer: Plugin Type = Passive

You can change the report type of an existing custom report. - Answer: False Which of the following Distribution options allows you to send report results to a user in a different organization? - Answer: Email Addresses You can add a dashboard from a pre-built dashboard template or create a custom dashboard. - Answer: True The Dashboard Options button displays which of the following selections? - Answer: Add Dashboard, Manage Dashboards, Edit Dashboard, Share Dashboard Which of the following types of information can you display on your Dashboard in SecurityCenter? - Answer: Compliance data, Vulnerability data, Trends, Organizational structure What new functionality was added in SecurityCenter 5 under the Dashboard menu? - Answer: Assurance Report Cards All of these are examples of Dashboard components except which one? - Answer: XY Axis Graph You can only add Dashboard components for the existing queries you have set up in the Analysis menu. - Answer: False You've just added a new dashboard using a template, which option allows you to specify the Asset, IP Address, and Repository? - Answer: Focus Clicking the Pushpin icon next to a dashboard name on the Manage Dashboards page will do which of the following? - Answer: Make the dashboard active/inactive

SecurityCenter organizations are that have responsibilities for __________. - Answer: groups of individuals, a set of common assets Which SecurityCenter user role resides at the top of an organization hierarchy? - Answer: Security Manager Each SecurityCenter will contain only one Administrator, one Organization, and one Security Manager. - Answer: False What are the options in the Scanning Distribution Method field on the Organization Setup page? - Answer: Automatic Distribution Only, Locked Zone, Selectable Zones SecurityCenter supports an unlimited number of objects: Users, Scan Zones, Repositories, Organizations, and Asset Lists. - Answer: False Security Managers have the ability to assign roles and responsibilities for assets for all organizations within the SecurityCenter. - Answer: False Which SecurityCenter user role creates organizations? - Answer: Administrator When SecurityCenter initiates a scan of a given IP address, ___________. - Answer: It determines what zone the IP address is in and notifies the appropriate scanner. Which statement about Nessus scanners is NOT correct? - Answer: You must have at least 2 Nessus scanners behind the firewall. SecurityCenter must be able to connect to each Nessus scanner in your network on a distinct IP address. - Answer: True

Local repositories can contain which of the following types of data? - Answer: IP v4, IP v6, Mobile You can combine IPv4 and IPv6 data in the same repository - Answer: False Roles __________. - Answer: Define what a user can do (such as having full, limited, or no scanning permissions). Groups__________. - Answer: Combine access rights to objects within an organization for quick assignment to one or more users. Users__________. - Answer: Are individual SecurityCenter accounts. When creating a custom role, what are the Scanning Permissions that you can assign? - Answer: Create scans, Create plugin scans Which of the following roles is NOT a predefined SecurityCenter role? - Answer: Information Assurance Manager Which of the following groups is defined for each organization by default? - Answer: Full Access When you create a group, select all of the objects that you could share to the group. - Answer: Assets, Assurance Report Cards, Credentials You are adding a new user. Which of the following access settings apply to that user definition? - Answer: Asset Responsibility, Role, Group, Manage Objects

Where do you grant the ability to manage other users and their objects? - Answer: In the Users

User Definition Which of the following are available through SecurityCenter's Workflow functionality? - Answer: Alerts and tickets You can configure SecurityCenter to perform alerts based on the following condition types: ___________, ____________, or ____________. - Answer: Vulnerability, Event, Ticket Occurrences The trigger options for setting a SecurityCenter alert are IP count, Vulnerability/Event count, and _____ count. - Answer: Port What alert function defines what an alert does after it has been triggered? - Answer: Add Actions Which of the following is NOT a potential action when defining an alert? - Answer: Create Scan Policies Tickets can be automatically generated from an alert or manually created. - Answer: True What is ACAS? - Answer: ACAS is a network-based security compliance and assessment capability designed to provide awareness of the security posture and network health of DoD networks. Which of the following best describes the Security Center? - Answer: The central console that provides continuous asset-based security and