Tenable Security Center: Comprehensive Vulnerability Management, Exams of Advanced Education

An overview of the tenable security center (tenable.sc) platform, which is a comprehensive vulnerability management solution. It covers key features and functionalities of tenable.sc, including asset discovery, vulnerability assessment, compliance monitoring, and remediation tracking. The document delves into the audit file structure, scan types, user roles and permissions, scan configuration options, and best practices for optimizing scan performance and accuracy. It also discusses the integration of tenable.sc with other tenable products like nessus and nessus agents, as well as the handling of scan data and repositories. This information can be valuable for security professionals, it administrators, and organizations looking to implement a robust vulnerability management program using tenable.sc.

Typology: Exams

2023/2024

Available from 10/23/2024

EXAMGUIDE
EXAMGUIDE 🇺🇸

4.4

(33)

32K documents

1 / 36

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
ACAS Training and Best Practice
Reviews Exam Questions and Answers
A iivulnerability iiwill iibe iimarked iias iimitigated iiin iithe iiTenable.sc iirepository iiif iia
iisubsequent iiscan iidetermines iithat iithe iivulnerability iiis iino iilonger iipresent iion
iithe iiendpoint.
Select iithe iicorrect iianswer.
a. iiTrue
b. iiFalse
a
Select iithe iibest iianswer.
a. iiActive iiScan iiView
b. iiVulnerability iiSummary
c. iiIP iiSummary
d. iiRemediation iiSummary
c
Nessus iiAgents iiare iilightweight iiNessus iiscanners iiinstalled iion iithe iiendpoint,
iiaccording iito iithe iiACAS iiAgent iiRapid iiDeployment iiGuide.
Select iithe iibest iianswer.
a. iiTrue
b. iiFalse
a
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24

Partial preview of the text

Download Tenable Security Center: Comprehensive Vulnerability Management and more Exams Advanced Education in PDF only on Docsity!

ACAS Training and Best Practice

Reviews Exam Questions and Answers

A iivulnerability iiwill iibe iimarked iias iimitigated iiin iithe iiTenable.sc iirepository iiif iia iisubsequent iiscan iidetermines iithat iithe iivulnerability iiis iino iilonger iipresent iion iithe iiendpoint.

Select iithe iicorrect iianswer.

a. iiTrue b. iiFalse

a

Select iithe iibest iianswer.

a. iiActive iiScan iiView b. iiVulnerability iiSummary c. iiIP iiSummary d. iiRemediation iiSummary

c

Nessus iiAgents iiare iilightweight iiNessus iiscanners iiinstalled iion iithe iiendpoint, iiaccording iito iithe iiACAS iiAgent iiRapid iiDeployment iiGuide.

Select iithe iibest iianswer.

a. iiTrue b. iiFalse

a

Per iithe iiBest iiPractices iiGuide, iiwhich iiof iithe iifollowing iistatements iiare iitrue? Select iithe iicorrect iianswer(s).

a. iiThe iiTASKORD iidefines iiseveral iitarget iitypes iion iiwhich iiNessus iiAgents iiare iirequired iito iibe iiinstalled. b. iiNessus iiAgents iican iibe iiinstalled iion iiaddition iiendpoints iiabove iiTASKORD iirequirement. c. iiPer iithe iiTASKORD iiorganizations iiendpoints iiwhich iileverage iia iiNessus iiAgents iimust iialso iibe iiscanned iiwith iithe iiNessus iiactive iiscanner iiusing iiACAS iiBest iiPractice iiGuide iiAgent iiDifferential iiscan iipolicy. d. iiIf iiyou iiuse iiNessus iiAgents, iithen iiyou iidon't iineed iiany iiother iiscanning iitools iifor iiACAS. e. iiAll iithe iiabove

a iib iic

Nessus iiAgent iiand iiManager iiuse iithe iisame iisoftware.

Select iithe iicorrect iianswer.

a. iiTrue b. iiFalse

b

Per iithe iiBest iiPractices iiGuide, iiwhich iiof iithese iistatements iiis iitrue.

Select iithe iicorrect iianswers.

a. iiACAS iiTASKORD ii20-0020 iiFRAGO ii 3 iiclarifies iithat iionly iiDISA iiSTIG iiTenable iiAudit iifiles iiare iito iibe iiused iifor iiconfiguration iiscanning iiin iiACAS. b. iiDISA iiSCAP-compliant, iiautomated iibenchmarks iiare iistill iiacceptable iifor iiingest iiinto iiCMRS. c. iiAudit iifiles iiare iiproprietary iiformatted iiXML iifiles iithat iidefine iihow iiACAS iishould iicheck iifor iiconfiguration iiwith iia iispecified iibenchmark.

iicheck iifor iiconfiguration iiwith iia iispecified iiSTIG?

Select iithe iibest iianswer: a. iiCredentials b. iiQueries c. iiPolicies d. iiAudit iiFiles

d

The iiTenable iiNessus iivulnerability iiscanner iiallows iiyou iito iiperform iicompliance iiaudits iiof iinumerous iiplatforms iiincluding ii(but iinot iilimited iito) iidatabases, iiCisco, iiUnix, iiand iiWindows iiconfigurations iias iiwell iias iisensitive iidata iidiscovery iibased iion iiregex iicontained iiin iiaudit iifiles. ii

Audit iifiles iiare iiXML-based iitext iifiles iithat iicontain iithe iispecific iiconfiguration, iifile iipermission, iiand iiaccess iicontrol iitests iito iibe iiperformed.

Log iiin iito iiTenable iiSecurity iiCenter iivia iithe iiuser iiinterface.

Click ii Scans ii > iiAudit iiFiles.

The ii Audit iiFiles iipage iiappears.

Scan iizone

Scan iizones iiare iiareas iiof iiyour iinetwork iithat iiyou iiwant iito iitarget iiin iian iiactive iiscan

Associates iian iiIP iiaddress iior iirange iiof iiIP iiaddresses iiwith iione iior iimore iiscanners

You iimust iicreate iiscan iizones iiin iiorder iito iirun iiactive iiscans iiin iiTenable iiSecurity iiCenter.

CVSS iivs. iiVPR

CVSS iiis iithe iioverall iiscore iiassigned iito iia iivulnerability. iiCVE iiis iisimply iia iilist iiof iiall iipublicly iidisclosed iivulnerabilities iithat iiincludes iithe iiCVE iiID, iia iidescription, iidates, iiand iicomments. iiThe iiCVSS iiscore iiis iinot iireported iiin iithe iiCVE iilisting ii– iiyou iimust iiuse iithe iiNVD iito iifind iiassigned iiCVSS iiscores.

Tenable iicalculates iia iidynamic iiVPR iifor iimost iivulnerabilities. iiThe iiVPR iiis iia iidynamic iicompanion iito iithe iidata iiprovided iiby iithe iivulnerability's iiCVSS iiscore, iisince iiTenable iiupdates iithe iiVPR iito iireflect iithe iicurrent iithreat iilandscape. iiVPR iivalues iirange iifrom ii0.1-10.0, iiwith iia iihigher iivalue iirepresenting iia iihigher iilikelihood iiof iiexploit.

Note: iiWhen iiyou iiview iithese iimetrics iion iian iianalysis iipage iiorganized iiby iiplugin ii(for iiexample, iithe ii Vulnerabilities iipage), iithe iimetrics iirepresent iithe iihighest iivalue iiassigned iior iicalculated iifor iia iivulnerability iiassociated iiwith iithe iiplugin.

Nessus iiscanners

Collects iidata iiand iireports iiresults iito iiTenable.sc iiconsole

CAT iiII iivulnerability iiweight

4

CAT iiI iivulnerability iiweight

10

JFHQ-DODIN iiOrder

TASKORD ii20-

Security iiManager iiRole iiCapabilities

iiTenable iiSecurity iiCenter iiscans. iiYou iicannot iiuse iidynamic iiassets iiuntil iiafter iiTenable iiSecurity iiCenter iiperforms iian iiinitial iidiscovery iiscan iiand iiretrieves iia iilist iiof iidevices.

Maximum iihosts iiin iia iisingle iitargeted iiscan

2,

What iiis iia iiTenable iiScan iipolicy

In iiTenable's iiSecurity iiCenter ii(now iipart iiof iiTenable.sc iifor iiclarity), iia iiscan iipolicy iiis iia iicomprehensive iiset iiof iiconfigurations iithat iidictate iihow iivulnerability iiscans iiare iiconducted. iiIt iicontains:

Plugin iiSettings: iiDefines iiwhich iiplugins iiare iienabled iior iidisabled iifor iia iiscan. iiPlugins iiare iiscripts iithat iicheck iifor iispecific iitypes iiof iivulnerabilities.

Advanced iiDirectives: iiThese iiare iiconfigurations iithat iifine-tune iithe iiscanning iiprocess, iiadjusting iiit iifor iispecific iirequirements iior iienvironments.

When iian iiadministrator iicreates iia iiscan iipolicy iiin iiTenable iiSecurity iiCenter, iithey're iiessentially iisetting iiup iithe iirules iiand iiconditions iiunder iiwhich iia iiscan iiwill iioperate. iiThis iiincludes iithe iidepth iiof iithe iiscan, iithe iitypes iiof iivulnerabilities iito iilook iifor, iiand iihow iiaggressively iithe iiscan iishould iiattempt iito iiidentify iipotential iisecurity iiissues. iiT

Tenable.sc iirepostirories iiare

A iirepository iidatabase iiis iicrucial iifor iistoring iidetailed iiinformation iiabout iinetwork iivulnerabilities, iicompliance iidata, iiand iiother iisecurity-related iiinsights iiderived iifrom iiscans iiacross iian iiorganization's iinetwork. iiKey iipoints iiabout iithe iiTenable.sc iirepositories iiinclude:

Repositories: iiThe iiTenable.sc iidatabase iiis iiorganized iiinto iirepositories, iiwhich iiare iispecialized iidatabases iiwithin iiTenable.sc iidesigned iifor iiscalable iiand iiconfigurable iidata iistorage. ii

These iirepositories iistore iidetailed iiinformation iicollected iiduring iisecurity iiand iivulnerability iiassessments ii.

JFHQ-DODIN iiTASKORD iifor iiACAS iideployment

TASKORD ii20-

ACAS iiacronym

Assured iiCompliance iiAssessment iiSolution

What iiis iithe iiDoD iiServer iifeed iifor iiTenable.sc iiplugins?

DISA iiPlugin iiServer

ACAS iiarchitecture iiprocess iistep

Scan iiresults iiare iisent iiback iito iiTenable.sc

According iito iithe iiACAS iiBest iiPractices iiGuide/ACAS iiTASKORD, iiboth iiDiscovery iiand iiVulnerability iiScans iiare iito iibe iicredentialed.

True False

True

Per iithe iiTASKORD iithe iiorganization iiwill iiconduct iidiscovery iiscans iiof iithe iisite's iiassigned iiIP iispace ii(active iiand iiinactive iiIP iiaddresses iiand iiranges) iiat iileast iionce iievery iihow iimany iidays? Select iithe iibest iianswer ii(per iithe iiBest iiPractices iiGuide).

a. ii 7 b. ii 14

iithan ii(NLT) ii 72 iihours iiafter iithe iidiscovery iiscan/operation iiis ii"Completed" d. iiOut iiof iicompliance iibecause iivulnerability iiscans iiare iito iibe iiinitiated iino iiless iithank ii 24 iihours iiafter iithe iidiscovery iiscan/operation iiis ii"Completed"

c

What iivulnerabilities iiare iistored iiin iiTenable.sc's iiCumulative iiRepository? Select iithe iibest iianswer.

a. iiNewly iimitigated iivulnerabilities b. iiVulnerabilities iidiscovered iifrom iithe iimost iirecent iiscan c. iiVulnerabilities iidiscovered iifrom iithe iicurrent iidays iiscan d. iiCurrent iivulnerabilities, iiincluding iithose iithat iihave iibeen iirecast, iiaccepted, iior iimitigated iiand iifound iivulnerable iion iirescan

d Cumulative iiVulnerabilities The iicumulative iidatabase iicontains iicurrently iivulnerable iivulnerabilities, iiincluding iirecast, iiaccepted, iior iipreviously iimitigated iivulnerabilities. Mitigated iiVulnerabilities The iimitigated iidatabase iicontains iivulnerabilities iithat iiTenable iiSecurity iiCenter iidetermines iiare iinot iivulnerable, iibased iion iithe iiscan iidefinition, iithe iiresults iiof iithe iiscan, iithe iicurrent iistate iiof iithe iicumulative iiview, iiand iiauthentication iiinformation.

Frequently iiused ii_____________ iican iibe iisaved iias ii_____________ iifor iiuse iiin iianalysis, iidashboards, iireports, iitickets, iiand iialerts. Select iithe iibest iianswer iito iicomplete iithe iistatement.

a. iiplugins, iitickets b. iiscans, iipolicies c. iifilters, iiqueries d. iifilters, iialerts

c

Accept iiRisk iiallows iiuser iito iiaccept iirisks iifor iivulnerabilities iiwhich iiremoves them iifrom iithe iidefault iiview iifor iianalysis, iidashboards, iiand iireports. iiPer iithe Best iiPractices iiGuide, iiany iirecast iior iiaccepted iirisk iishould iibe ii____.

Select iithe iianswer(s) iito iicomplete iithe iistatement.

Accepted iiby iithe iiAO iiat iiyour iisite/facility

Annotated iiwith iitrouble iiticket iifrom iithe iiACAS iiSupport iiDesk

Documented iito iiensure iithe iistatus iiof iithe iiplugins iiis iiclear iito iia iivisiting iiauditor iiand/or iiother iiorganizational iisecurity iistaff.

When iiyou iicreate iidynamic iiasset iilist(s), iiwhich iiof iithe iifollowing iioccurs? iiSelect iithe iibest iianswer.

a. iiTenable.sc iiruns iia iiscan iito iifind iiassets iithat iimatch iithe iidynamic iiasset iilist's iirules. b. iiTenable.sc iiqueries iithe iirepository(ies) iito iifind iiassets iithat iimatch iithe iidynamic iiasset iilist's iirules. c. iiTanium iiruns iia iiquery iito iifind iithe iianswer.

a

Dynamic iiassets iiare iiflexible iigroups iiof iicondition iistatements iithat iiTenable iiSecurity iiCenter iiuses iito iiretrieve iia iilist iiof iidevices iimeeting iithe iiconditions. Tenable iiSecurity iiCenter iirefreshes iidynamic iiasset iilists iiusing iithe iiresults iifrom iiTenable iiSecurity iiCenter iiscans. iiYou iicannot iiuse iidynamic iiassets iiuntil iiafter iiTenable iiSecurity iiCenter iiperforms iian iiinitial iidiscovery iiscan iiand iiretrieves iia iilist iiof iidevices.

Which iiof iithese iistatements iiabout iithe iiNessus iiNetwork iiMonitor iiis iiaccurate, iiaccording iito iithe iiACAS iiBest iiPractices iiGuide? Select iithe iibest iianswer.

a. iiCSV b. iiHTML c. iiARF d. iiPDF

a iib iid

When iiadding iia iinew iiReport iiin iiACAS iiusing iia iitemplate, iiwhich iioption iiallows iiyou iito iispecify iian iiAsset ii(List), iiIP iiAddress, iiand/or iiRepository?

Select iithe iibest iianswer.

a. iiAdd b. iiFocus c. iiExport d. iiLaunch

b

Which iiof iithe iifollowing iiReport iiDistribution iioptions iiallows iiyou iito iisend iireport iiresults iito iia iiuser iiin iia iidifferent iiorganization? Select iithe iibest iianswer.

a. iiEmail iiUsers b. iiEmail iiAddresses c. iiShare d. iiQuery

b

According iito iithe iiBest iiPractices iiGuide, iiwhich iiPlugin iiis iia iigood iistarting iipoint iiwhen iiworking iiissues iiwith iiscanning iian iiendpoint iior iiunexpected iiresults.

Select iithe iibest iianswer.

a. ii 19506

b. ii 21745 c. ii 30300 d. ii 45678

a

Match iithe iiappropriate iidefinition iiwith iithe iibuilding iiblock. Drag iithe iidefinition iiand iidrop iiit iibeside iithe iiterm iithat iiit iidescribes.

Roles Groups Users

Roles Define iiwhat iia iiuser iican iido ii(such iias iihaving iifull, iilimited, iior iino iiscanning iipermissions)

Groups Combine iiaccess iirights iito iiobjects iiwithin iian iiorganization iifor iiquick iiassignment iito iione iior iimore iiusers.

Users Are iiindividual iiTenable.sc iiaccounts

Which iiUser iirole iihas iithe iipermission iito iicreate iiscan iizones, iirepositories, iiand iiorganizations?

Select iithe iibest iianswer.

a. iiAdministrator b. iiSecurity iiManager c. iiExecutive d. iiAll iiof iithe iiabove

a

a. ii12-24 iihours b. ii12-36 iihours c. ii48-72 iihours d. ii 60 iihours

c

Under iithe iiDoD iiACAS iicontract, iiwhere iiwould iiyou iiacquire iithe iisoftware iito iiinstall iifor iia iinew iiACAS iideployment?

Select iithe iibest iianswer.

a. iiTenable.com b. iiPatch iiRepository c. iiDevforce d. iiCyber.mil

b

Today iiis iiThursday, iiand iiyou iiare iigetting iiready iito iirun iiyour iiweekly iivulnerability iiscans. iiYour iiplugins iiwere iiupdated iion iiMonday.

Select iithe iicorrect iianswer iibased iion iiyour iistatus.

a. iiIn iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 7 iidays iibefore iiTASKORD-mandated iiscans. b. iiIn iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 14 iidays iibefore iiTASKORD-mandated iiscans. c. iiOut iiof iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 72 iihours iibefore iiTASKORD-mandated iiscans. d. iiOut iiof iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 24 iihours iibefore iiTASKORD-mandated iiscans.

a

Components iiof iian iiActive iiVulnerability iiScan iiconsist iiof iia iiscan iipolicy, iischedule, iicredentials, iiscan iizone, iiimport iirepository, iiand ii__________.

Select iithe iibest iianswer iito iicomplete iithe iistatement.

a. iiUser iirole b. iiEndpoints/Targets c. iiAssurance iiReport iiCards d. iiAsset iiLists

b

_________ iiare iiadministrative iilevel iiusernames iiand iipasswords ii(or iiSSH iikey iipairs) iiused iiin iiauthenticated iiscans?

Select iithe iibest iianswer iito iicomplete iithe iistatement.

a. iiAudit iifiles b. iiScan iipolicies c. iiCredentials d. iiAsset iilists

c

Networks iiusing iiDynamic iiHost iiConfiguration iiProtocol ii(DHCP) iirequire iithat iithis iiactive iiscan iisetting iibe iienabled iito iiproperly iitrack iihosts.

Select iithe iibest iianswer iifor iithe iistatement.

a. iiRollover iiOption b. iiEnable iiSafe iiChecks c. iiTrack iihosts iiwhich iihave iibeen iiissued iinew iiIP iiaddresses d. iiRemove iivulnerabilities iifrom iiscanned iihosts iithat iihave iibeen iiinactive iifor ii(X iidays)

d. iiLimits iithe iimaximum iinumber iiof iitargets iithat iia iisingle iiNessus iiscanner iiwill iiscan iiat iithe iisame iitime.

You iineed iito iimake iia iichange iito iia iisetting iiin iithe iiBPG iiVulnerability iiScan iiPolicy iiTemplate, iisuch iias iithe iianti-virus iidefinition iiperiod iisetting.

Which iiof iithe iifollowing iiis iia iitrue iistatement?

a. iiSubmit iia iicopy iiof iithe iimodified iitemplate iito iiJFHQ-DODIN iifor iiapproval b. iiMake iithe iichanges iias iineeded, iithere iiare iino iiother iirequirements. c. iiEnsure iithe iichange iiis iidocumented iiand iiapproved iiby iiyou iiAO, iiISSM, iior iilocal iiauthority. d. iiDon't iimake iiany iichanges, iichanging iithe iiBPG-provided iiscan iiis iinot iiallowed iiper iiCCRI iiaudit iiguidelines.

c

To iiget iithe iimost iiaccurate iiresults iion iithe iisecurity iiposture iiof iia iisystem, iiwhich iiof iithe iifollowing iiactions iishould iibe iidone iiprior iito iiscanning?

a. iiUpdate iithe iiplugins b. iiPatch iithe iiscanner c. iiReboot iithe iitarget iihost d. iiLog iiall iiusers iiout iiof iithe iisystem.

a

A iivulnerability iiwill iibe iimarked iias iimitigated iiin iithe iiTenable.sc iirepository iiif iia iisubsequent iiscan iidetermines iithat iithe iivulnerability iiis iino iilonger iipresent iion iithe iiendpoint.

Select iithe iicorrect iianswer.

a. iiTrue b. iiFalse

a

Nessus iiAgents iiare iilightweight iiNessus iiscanners iiinstalled iion iithe iiendpoint, iiaccording iito iithe iiACAS iiAgent iiRapid iiDeployment iiGuide.

Select iithe iibest iianswer.

a. iiTrue b. iiFalse

a

Per iithe iiBest iiPractices iiGuide, iiwhich iiof iithe iifollowing iistatements iiare iitrue? Select iithe iicorrect iianswer(s).

a. iiThe iiTASKORD iidefines iiseveral iitarget iitypes iion iiwhich iiNessus iiAgents iiare iirequired iito iibe iiinstalled. b. iiNessus iiAgents iican iibe iiinstalled iion iiaddition iiendpoints iiabove iiTASKORD iirequirement. c. iiPer iithe iiTASKORD iiorganizations iiendpoints iiwhich iileverage iia iiNessus iiAgents iimust iialso iibe iiscanned iiwith iithe iiNessus iiactive iiscanner iiusing iiACAS iiBest iiPractice iiGuide iiAgent iiDifferential iiscan iipolicy. d. iiIf iiyou iiuse iiNessus iiAgents, iithen iiyou iidon't iineed iiany iiother iiscanning iitools iifor iiACAS. e. iiAll iithe iiabove

a iib iic

It iihas iibeen ii 20 iidays iisince iiyour iilast iiconfiguration ii(STIG) iiscan. iiPer iiFRAGO ii 2 iiof iithe iiTask iiOrder ii20-0020, iiwhich iiof iithe iifollowing iistatements iireflects iiyour iicurrent iicompliance iistatus?

Select iithe iibest iianswer.

In iicompliance iibecause iiconfiguration iiscans iiare iionly iirequired iievery ii 30 iidays.