SecurityCenter Vulnerability Management System, Exams of Nursing

The features and functionality of the securitycenter vulnerability management system, which is used to monitor and secure dod networks. It covers topics such as the active scanner that probes hosts, the central console for continuous asset-based security and compliance monitoring, and the various components and settings of the securitycenter platform. Detailed information on scan policies, asset lists, credentials, plugins, dashboards, reporting, and user roles and permissions. It also discusses the integration of securitycenter with other security tools like nessus. Overall, the document serves as a comprehensive guide to the securitycenter system and its capabilities in managing network vulnerabilities and ensuring compliance.

Typology: Exams

2024/2025

Available from 09/24/2024

DRGARY
DRGARY 🇺🇸

3.7

(3)

1.4K documents

1 / 34

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
1 | P a g e
ACAS 5.3 FINAL EXAM 2024-2025 WITH
ACTUAL CORRECT QUESTIONS AND
VERIFIED DETAILED ANSWERS
|FREQUENTLY TESTED QUESTIONS AND
SOLUTIONS |ALREADY GRADED
A+|BRAND NEW VERSION!!!
|GUARANTEED PASS |LATEST UPDATE
What is ACAS? Select the best answer.
A. ACAS is a network-based security compliance and assessment capability designed to provide
awareness of the security posture and network health of DoD networks.
B. ACAS is a system that ensures security for the DoD networks.
C. ACAS is a system that monitors and corrects vulnerabilities to provide security for the DoD networks.
D. All of the above
*** Module 1-1 ***
A
Which of the following best describes the SecurityCenter? Select the best answer.
A. A topology viewer that provides graphical analysis information
B. The passive scanner that detects vulnerabilities by sniffing network traffic
C. The active scanner that probes hosts
D. The central console that provides continuous asset-based security and compliance monitoring
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22

Partial preview of the text

Download SecurityCenter Vulnerability Management System and more Exams Nursing in PDF only on Docsity!

ACAS 5.3 FINAL EXAM 2024-2025 WITH

ACTUAL CORRECT QUESTIONS AND

VERIFIED DETAILED ANSWERS

|FREQUENTLY TESTED QUESTIONS AND

SOLUTIONS |ALREADY GRADED

A+|BRAND NEW VERSION!!!

|GUARANTEED PASS |LATEST UPDATE

What is ACAS? Select the best answer. A. ACAS is a network-based security compliance and assessment capability designed to provideawareness of the security posture and network health of DoD networks.

B. ACAS is a system that ensures security for the DoD networks. C. ACAS is a system that monitors and corrects vulnerabilities to provide security for the DoD networks. D. All of the above

*** Module 1-1 *** A Which of the following best describes the SecurityCenter? Select the best answer. A. A topology viewer that provides graphical analysis information B. The passive scanner that detects vulnerabilities by sniffing network traffic C. The active scanner that probes hosts D. The central console that provides continuous asset-based security and compliance monitoring

*** Module 1-1 *** D True/False A vulnerability is a weakness or an attack that can compromise your system.

*** Module 1-1 *** False True/False The Nessus scanner monitors data at rest, while the PVS monitors data in motion.

*** Module 1-1 *** True True/False PVS detects vulnerabilities based on network traffic instead of actively scanning hosts.

*** Module 1-1 *** True Which ACAS component performs active vulnerability and compliance scanning? Select the best answer. A. 3D Tool B. PVS C. Nessus D. SecurityCenter

*** Module 1-1 *** C True/False

C. Preferences D. System Status E. Feeds

*** Module 1-2 *** B, E Which page allows you to set your local time zone? Select the best answer. A. Dashboard B. Feeds C. Profile D. Workflow

*** Module 1-2 *** C What is an organization? Select the best answer. A. A database of vulnerability data defined by assets or IP addresses B. A group of individuals who are responsible for a set of common assets C. A defined static range of IP addresses with an associated Nessus scanner(s) D. A script file used to collect and interpret vulnerability, compliance, and configuration data

*** Module 1-3 *** B What is a scan zone? Select the best answer. A. A database of vulnerability data defined by assets or IP addresses B. A group of individuals who are responsible for a set of common assets

C. A defined static range of IP addresses with an associated Nessus scanner(s) D. A script files used to collect and interpret vulnerability, compliance, and configuration data

*** Module 1-3 *** C What is the maximum size of a SecurityCenter 5 Repository? Select the best answer. A. 2 GB B. 4 GB C. 16 GB D. 32 GB

*** Module 1-3 *** D True/False The IP address(es) you are scanning must be contained in both the definition of the scan zone and the definition of the repository.

*** Module 1-3 *** True What SecurityCenter role is responsible for setting up scan zones? Select the best answer. A. Administrator B. Manager C. Security Manager D. End User

*** Module 1-3 ***

A. User role B. Query C. Repository D. Target list

*** Module 1-4 *** C, D _________ are administrative-level usernames and passwords (or SSH keypairs) used in authenticatedscans? Select the best answer.

A. Audit Files B. Scan Policies C. Credentials D. Asset Lists

*** Module 1-4 *** C True/False You can associate multiple credentials with a single scan.

*** Module 1-4 *** True Networks using Dynamic Host Configuration Protocol (DHCP) require that this Active Scan setting be enabled to properly track hosts. Select the best answer. A. Remove vulnerabilities from scanned hosts that have been inactive for (X days) B. Track hosts which have been issued IP addresses C. Scanning Virtual Hosts

D. Rollover Option

*** Module 1-4 *** B Which type of scan obtains information by authenticating to the host to access resources not availableover the network. Select the best answer.

A. Credentialed B. Uncredentialed

*** Module 1-4 *** A True/False You may only select one import repository per scan.

*** Module 1-4 *** True True/False Once a scan is running, you cannot pause or stop the scan until it has completed running.

*** Module 1-4 *** False Which Port Scanning Range option tells the scanner to scan only common ports? Select the best answer. A. 1- B. 1- C.default D. common

E. FQDN

*** Module 1-4 *** A, B, C, D Which of the following Scan Policy types allows you to select Plugin Families you want? Select the bestanswer.

A. Basic Network Scan Template B. Custom Advanced Scan C. Host Discovery Template D. Credentialed Patch Audit Template

*** Module 1-4 *** B True/False Asset lists are dynamically or statically generated lists of hosts.

*** Module 1-5 *** True Which type of asset list updates automatically when a scan runs and a repository is updated? Select the best answer. A. Static B. Dynamic C. DNS Names D. LDAP Query

*** Module 1-5 *** B

What is a static asset list? Select the best answer. A. A list that defines groups of machines that have common aspects B. A list of IP addresses that require user intervention in order to change what defines them C. A list of assets based on passive or active scan results D. None of the above

*** Module 1-5 *** B What two ways can you use to add a dynamic asset list? Select the best answer. A. Use a template or create a set of rules B. Use a scan policy or a template C. Create a set of rules or a scan policy D. All of the above

*** Module 1-5 *** A When you create dynamic asset list(s), which of the following occurs? Select the best answer. A. SecurityCenter runs a scan to find assets that match the dynamic asset list's rules. B. SecurityCenter queries the repository(ies) to find assets that match the dynamic asset list's rules.

*** Module 1-5 *** B True/False Users in different groups using the same shared asset list could see different IP addresses in the list.

*** Module 1-5 ***

B. CCE Summary C. CVE Summary D. IAVM Summary E. Vulnerability Summary

*** Module 2-1 *** D Vulnerability filters are available to search on the following categories. Select all that apply. A. Vulnerability Information B. Targets C. ID Numbers D. Dates E. Reports

*** Module 2-1 *** A, B, C, D Frequently used _____________ can be saved as _____________ for use in analysis, dashboards,reports, tickets, and alerts. Select the best answer to complete the statement.

A. scans, alerts B. scans, policies C. filters, queries D. filters, alerts

*** Module 2-1 *** C

Vulnerability results can be exported to a comma-separated file by clicking on _______? Select the best answer. A. More > Create Report B. Options > Export as CSV C. Workflow > Export as CSV D. View Settings E. Open Ticket

*** Module 2-1 *** B Which of the following allows you to set an expiration date? Select the best answer. A. Recast Risk B. Accept Risk C. Launch Remediation Scan D. Add To Scratch Pad

*** Module 2-1 *** B Which of the following SecurityCenter resources allows you to combine filters to provide customized,saved views of vulnerability scan data? Select the best answer.

A. Credentials B. Queries C. Scan Policies D. Audit files

*** Module 2-1 ***

*** Module 2-2 *** False Which of the following vulnerability filter settings results in viewing only vulnerabilities detected by PVS.Select the best answer.

A. Plugin Type = Compliance B. Repository = All C. Family = Passive D. Plugin Type = Passive

*** Module 2-2 *** D Systems and devices are compliant when they are _________. Select the best answer to complete thestatement.

A. Secure B. Properly configured C. Patched D. In accordance with established guidelines, specifications or legislation

*** Module 2-3 *** D True/False Compliance auditing identifies deviations from a defined standard, whereas, vulnerability managementfinds weaknesses that could lead to compromise.

*** Module 2-3 *** True

True/False Your system can suffer a security breach and still be compliant.

*** Module 2-3 *** True Acceptable audit files for SecurityCenter include which of the following? Select all that apply. A. Tenable Network Security Templates (SC Feed) B. DISA STIG Automated Benchmarks (ingested in .zip format) C. Retina® Audits D. SCAP compliant checklists from NIST (.xccdf)

*** Module 2-3 *** A, B, D Which SecurityCenter menu option do you use to upload audit files? Select the best answer. A. Dashboard B. Analysis C. Scans D. Workflow

*** Module 2-3 *** C In addition to a Nessus scanner, what are the components of a SecurityCenter compliance audit? Selectthe best answer.

A. Scan policy, scan results, compliance filters B. Compliance credentials, Audit file, compliance report C. Compliance plugins, Audit file, system or database credentials

D. RTF

E. ASR

F. PDF

*** Module 2-4 *** B You've just added a new report using a template, which option allows you to specify an Asset (List), IPAddress, and/or Repository? Select the best answer.

A. Add B. Focus C. Export D. Launch

*** Module 2-4 *** B Which report tab allows you to customize your report elements? Select the best answer. A. General B. Description C. Definition D. Distribution

*** Module 2-4 *** C True/False You can change the report type of an existing custom report.

*** Module 2-4 *** False Which of the following Distribution options allows you to send report results to a user in a differentorganization? Select the best answer.

A. Email Users B. Email Addresses C. Share D. Query

*** Module 2-4 *** B True/False. T/F You can add a dashboard from a pre-built dashboard template or create a custom dashboard.

*** Module 2-5 *** True The Dashboard Options button displays which of the following selections? Select the best answer. A. Add Dashboard B. Manage Dashboards C. Edit Dashboard D. Share Dashboard E. All of the above

*** Module 2-5 *** E