




























Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
An overview of the tenable security center (tenable.sc) platform, which is a comprehensive vulnerability management solution. It covers key features and functionalities of tenable.sc, including asset discovery, vulnerability assessment, compliance monitoring, and remediation tracking. The document delves into the audit file structure, scan types, user roles and permissions, scan configuration options, and best practices for optimizing scan performance and accuracy. It also discusses the integration of tenable.sc with other tenable products like nessus and nessus agents, as well as the handling of scan data and repositories. This information can be valuable for security professionals, it administrators, and organizations looking to implement a robust vulnerability management program using tenable.sc.
Typology: Exams
1 / 36
This page cannot be seen from the preview
Don't miss anything!





























A iivulnerability iiwill iibe iimarked iias iimitigated iiin iithe iiTenable.sc iirepository iiif iia iisubsequent iiscan iidetermines iithat iithe iivulnerability iiis iino iilonger iipresent iion iithe iiendpoint.
Select iithe iicorrect iianswer.
a. iiTrue b. iiFalse
a
Select iithe iibest iianswer.
a. iiActive iiScan iiView b. iiVulnerability iiSummary c. iiIP iiSummary d. iiRemediation iiSummary
c
Nessus iiAgents iiare iilightweight iiNessus iiscanners iiinstalled iion iithe iiendpoint, iiaccording iito iithe iiACAS iiAgent iiRapid iiDeployment iiGuide.
Select iithe iibest iianswer.
a. iiTrue b. iiFalse
a
Per iithe iiBest iiPractices iiGuide, iiwhich iiof iithe iifollowing iistatements iiare iitrue? Select iithe iicorrect iianswer(s).
a. iiThe iiTASKORD iidefines iiseveral iitarget iitypes iion iiwhich iiNessus iiAgents iiare iirequired iito iibe iiinstalled. b. iiNessus iiAgents iican iibe iiinstalled iion iiaddition iiendpoints iiabove iiTASKORD iirequirement. c. iiPer iithe iiTASKORD iiorganizations iiendpoints iiwhich iileverage iia iiNessus iiAgents iimust iialso iibe iiscanned iiwith iithe iiNessus iiactive iiscanner iiusing iiACAS iiBest iiPractice iiGuide iiAgent iiDifferential iiscan iipolicy. d. iiIf iiyou iiuse iiNessus iiAgents, iithen iiyou iidon't iineed iiany iiother iiscanning iitools iifor iiACAS. e. iiAll iithe iiabove
a iib iic
Nessus iiAgent iiand iiManager iiuse iithe iisame iisoftware.
Select iithe iicorrect iianswer.
a. iiTrue b. iiFalse
b
Per iithe iiBest iiPractices iiGuide, iiwhich iiof iithese iistatements iiis iitrue.
Select iithe iicorrect iianswers.
a. iiACAS iiTASKORD ii20-0020 iiFRAGO ii 3 iiclarifies iithat iionly iiDISA iiSTIG iiTenable iiAudit iifiles iiare iito iibe iiused iifor iiconfiguration iiscanning iiin iiACAS. b. iiDISA iiSCAP-compliant, iiautomated iibenchmarks iiare iistill iiacceptable iifor iiingest iiinto iiCMRS. c. iiAudit iifiles iiare iiproprietary iiformatted iiXML iifiles iithat iidefine iihow iiACAS iishould iicheck iifor iiconfiguration iiwith iia iispecified iibenchmark.
iicheck iifor iiconfiguration iiwith iia iispecified iiSTIG?
Select iithe iibest iianswer: a. iiCredentials b. iiQueries c. iiPolicies d. iiAudit iiFiles
d
The iiTenable iiNessus iivulnerability iiscanner iiallows iiyou iito iiperform iicompliance iiaudits iiof iinumerous iiplatforms iiincluding ii(but iinot iilimited iito) iidatabases, iiCisco, iiUnix, iiand iiWindows iiconfigurations iias iiwell iias iisensitive iidata iidiscovery iibased iion iiregex iicontained iiin iiaudit iifiles. ii
Audit iifiles iiare iiXML-based iitext iifiles iithat iicontain iithe iispecific iiconfiguration, iifile iipermission, iiand iiaccess iicontrol iitests iito iibe iiperformed.
Log iiin iito iiTenable iiSecurity iiCenter iivia iithe iiuser iiinterface.
Click ii Scans ii > iiAudit iiFiles.
The ii Audit iiFiles iipage iiappears.
Scan iizone
Scan iizones iiare iiareas iiof iiyour iinetwork iithat iiyou iiwant iito iitarget iiin iian iiactive iiscan
Associates iian iiIP iiaddress iior iirange iiof iiIP iiaddresses iiwith iione iior iimore iiscanners
You iimust iicreate iiscan iizones iiin iiorder iito iirun iiactive iiscans iiin iiTenable iiSecurity iiCenter.
CVSS iivs. iiVPR
CVSS iiis iithe iioverall iiscore iiassigned iito iia iivulnerability. iiCVE iiis iisimply iia iilist iiof iiall iipublicly iidisclosed iivulnerabilities iithat iiincludes iithe iiCVE iiID, iia iidescription, iidates, iiand iicomments. iiThe iiCVSS iiscore iiis iinot iireported iiin iithe iiCVE iilisting ii– iiyou iimust iiuse iithe iiNVD iito iifind iiassigned iiCVSS iiscores.
Tenable iicalculates iia iidynamic iiVPR iifor iimost iivulnerabilities. iiThe iiVPR iiis iia iidynamic iicompanion iito iithe iidata iiprovided iiby iithe iivulnerability's iiCVSS iiscore, iisince iiTenable iiupdates iithe iiVPR iito iireflect iithe iicurrent iithreat iilandscape. iiVPR iivalues iirange iifrom ii0.1-10.0, iiwith iia iihigher iivalue iirepresenting iia iihigher iilikelihood iiof iiexploit.
Note: iiWhen iiyou iiview iithese iimetrics iion iian iianalysis iipage iiorganized iiby iiplugin ii(for iiexample, iithe ii Vulnerabilities iipage), iithe iimetrics iirepresent iithe iihighest iivalue iiassigned iior iicalculated iifor iia iivulnerability iiassociated iiwith iithe iiplugin.
Nessus iiscanners
Collects iidata iiand iireports iiresults iito iiTenable.sc iiconsole
CAT iiII iivulnerability iiweight
4
CAT iiI iivulnerability iiweight
10
JFHQ-DODIN iiOrder
TASKORD ii20-
Security iiManager iiRole iiCapabilities
iiTenable iiSecurity iiCenter iiscans. iiYou iicannot iiuse iidynamic iiassets iiuntil iiafter iiTenable iiSecurity iiCenter iiperforms iian iiinitial iidiscovery iiscan iiand iiretrieves iia iilist iiof iidevices.
Maximum iihosts iiin iia iisingle iitargeted iiscan
2,
What iiis iia iiTenable iiScan iipolicy
In iiTenable's iiSecurity iiCenter ii(now iipart iiof iiTenable.sc iifor iiclarity), iia iiscan iipolicy iiis iia iicomprehensive iiset iiof iiconfigurations iithat iidictate iihow iivulnerability iiscans iiare iiconducted. iiIt iicontains:
Plugin iiSettings: iiDefines iiwhich iiplugins iiare iienabled iior iidisabled iifor iia iiscan. iiPlugins iiare iiscripts iithat iicheck iifor iispecific iitypes iiof iivulnerabilities.
Advanced iiDirectives: iiThese iiare iiconfigurations iithat iifine-tune iithe iiscanning iiprocess, iiadjusting iiit iifor iispecific iirequirements iior iienvironments.
When iian iiadministrator iicreates iia iiscan iipolicy iiin iiTenable iiSecurity iiCenter, iithey're iiessentially iisetting iiup iithe iirules iiand iiconditions iiunder iiwhich iia iiscan iiwill iioperate. iiThis iiincludes iithe iidepth iiof iithe iiscan, iithe iitypes iiof iivulnerabilities iito iilook iifor, iiand iihow iiaggressively iithe iiscan iishould iiattempt iito iiidentify iipotential iisecurity iiissues. iiT
Tenable.sc iirepostirories iiare
A iirepository iidatabase iiis iicrucial iifor iistoring iidetailed iiinformation iiabout iinetwork iivulnerabilities, iicompliance iidata, iiand iiother iisecurity-related iiinsights iiderived iifrom iiscans iiacross iian iiorganization's iinetwork. iiKey iipoints iiabout iithe iiTenable.sc iirepositories iiinclude:
Repositories: iiThe iiTenable.sc iidatabase iiis iiorganized iiinto iirepositories, iiwhich iiare iispecialized iidatabases iiwithin iiTenable.sc iidesigned iifor iiscalable iiand iiconfigurable iidata iistorage. ii
These iirepositories iistore iidetailed iiinformation iicollected iiduring iisecurity iiand iivulnerability iiassessments ii.
JFHQ-DODIN iiTASKORD iifor iiACAS iideployment
TASKORD ii20-
ACAS iiacronym
Assured iiCompliance iiAssessment iiSolution
What iiis iithe iiDoD iiServer iifeed iifor iiTenable.sc iiplugins?
DISA iiPlugin iiServer
ACAS iiarchitecture iiprocess iistep
Scan iiresults iiare iisent iiback iito iiTenable.sc
According iito iithe iiACAS iiBest iiPractices iiGuide/ACAS iiTASKORD, iiboth iiDiscovery iiand iiVulnerability iiScans iiare iito iibe iicredentialed.
True False
True
Per iithe iiTASKORD iithe iiorganization iiwill iiconduct iidiscovery iiscans iiof iithe iisite's iiassigned iiIP iispace ii(active iiand iiinactive iiIP iiaddresses iiand iiranges) iiat iileast iionce iievery iihow iimany iidays? Select iithe iibest iianswer ii(per iithe iiBest iiPractices iiGuide).
a. ii 7 b. ii 14
iithan ii(NLT) ii 72 iihours iiafter iithe iidiscovery iiscan/operation iiis ii"Completed" d. iiOut iiof iicompliance iibecause iivulnerability iiscans iiare iito iibe iiinitiated iino iiless iithank ii 24 iihours iiafter iithe iidiscovery iiscan/operation iiis ii"Completed"
c
What iivulnerabilities iiare iistored iiin iiTenable.sc's iiCumulative iiRepository? Select iithe iibest iianswer.
a. iiNewly iimitigated iivulnerabilities b. iiVulnerabilities iidiscovered iifrom iithe iimost iirecent iiscan c. iiVulnerabilities iidiscovered iifrom iithe iicurrent iidays iiscan d. iiCurrent iivulnerabilities, iiincluding iithose iithat iihave iibeen iirecast, iiaccepted, iior iimitigated iiand iifound iivulnerable iion iirescan
d Cumulative iiVulnerabilities The iicumulative iidatabase iicontains iicurrently iivulnerable iivulnerabilities, iiincluding iirecast, iiaccepted, iior iipreviously iimitigated iivulnerabilities. Mitigated iiVulnerabilities The iimitigated iidatabase iicontains iivulnerabilities iithat iiTenable iiSecurity iiCenter iidetermines iiare iinot iivulnerable, iibased iion iithe iiscan iidefinition, iithe iiresults iiof iithe iiscan, iithe iicurrent iistate iiof iithe iicumulative iiview, iiand iiauthentication iiinformation.
Frequently iiused ii_____________ iican iibe iisaved iias ii_____________ iifor iiuse iiin iianalysis, iidashboards, iireports, iitickets, iiand iialerts. Select iithe iibest iianswer iito iicomplete iithe iistatement.
a. iiplugins, iitickets b. iiscans, iipolicies c. iifilters, iiqueries d. iifilters, iialerts
c
Accept iiRisk iiallows iiuser iito iiaccept iirisks iifor iivulnerabilities iiwhich iiremoves them iifrom iithe iidefault iiview iifor iianalysis, iidashboards, iiand iireports. iiPer iithe Best iiPractices iiGuide, iiany iirecast iior iiaccepted iirisk iishould iibe ii____.
Select iithe iianswer(s) iito iicomplete iithe iistatement.
Accepted iiby iithe iiAO iiat iiyour iisite/facility
Annotated iiwith iitrouble iiticket iifrom iithe iiACAS iiSupport iiDesk
Documented iito iiensure iithe iistatus iiof iithe iiplugins iiis iiclear iito iia iivisiting iiauditor iiand/or iiother iiorganizational iisecurity iistaff.
When iiyou iicreate iidynamic iiasset iilist(s), iiwhich iiof iithe iifollowing iioccurs? iiSelect iithe iibest iianswer.
a. iiTenable.sc iiruns iia iiscan iito iifind iiassets iithat iimatch iithe iidynamic iiasset iilist's iirules. b. iiTenable.sc iiqueries iithe iirepository(ies) iito iifind iiassets iithat iimatch iithe iidynamic iiasset iilist's iirules. c. iiTanium iiruns iia iiquery iito iifind iithe iianswer.
a
Dynamic iiassets iiare iiflexible iigroups iiof iicondition iistatements iithat iiTenable iiSecurity iiCenter iiuses iito iiretrieve iia iilist iiof iidevices iimeeting iithe iiconditions. Tenable iiSecurity iiCenter iirefreshes iidynamic iiasset iilists iiusing iithe iiresults iifrom iiTenable iiSecurity iiCenter iiscans. iiYou iicannot iiuse iidynamic iiassets iiuntil iiafter iiTenable iiSecurity iiCenter iiperforms iian iiinitial iidiscovery iiscan iiand iiretrieves iia iilist iiof iidevices.
Which iiof iithese iistatements iiabout iithe iiNessus iiNetwork iiMonitor iiis iiaccurate, iiaccording iito iithe iiACAS iiBest iiPractices iiGuide? Select iithe iibest iianswer.
a. iiCSV b. iiHTML c. iiARF d. iiPDF
a iib iid
When iiadding iia iinew iiReport iiin iiACAS iiusing iia iitemplate, iiwhich iioption iiallows iiyou iito iispecify iian iiAsset ii(List), iiIP iiAddress, iiand/or iiRepository?
Select iithe iibest iianswer.
a. iiAdd b. iiFocus c. iiExport d. iiLaunch
b
Which iiof iithe iifollowing iiReport iiDistribution iioptions iiallows iiyou iito iisend iireport iiresults iito iia iiuser iiin iia iidifferent iiorganization? Select iithe iibest iianswer.
a. iiEmail iiUsers b. iiEmail iiAddresses c. iiShare d. iiQuery
b
According iito iithe iiBest iiPractices iiGuide, iiwhich iiPlugin iiis iia iigood iistarting iipoint iiwhen iiworking iiissues iiwith iiscanning iian iiendpoint iior iiunexpected iiresults.
Select iithe iibest iianswer.
a. ii 19506
b. ii 21745 c. ii 30300 d. ii 45678
a
Match iithe iiappropriate iidefinition iiwith iithe iibuilding iiblock. Drag iithe iidefinition iiand iidrop iiit iibeside iithe iiterm iithat iiit iidescribes.
Roles Groups Users
Roles Define iiwhat iia iiuser iican iido ii(such iias iihaving iifull, iilimited, iior iino iiscanning iipermissions)
Groups Combine iiaccess iirights iito iiobjects iiwithin iian iiorganization iifor iiquick iiassignment iito iione iior iimore iiusers.
Users Are iiindividual iiTenable.sc iiaccounts
Which iiUser iirole iihas iithe iipermission iito iicreate iiscan iizones, iirepositories, iiand iiorganizations?
Select iithe iibest iianswer.
a. iiAdministrator b. iiSecurity iiManager c. iiExecutive d. iiAll iiof iithe iiabove
a
a. ii12-24 iihours b. ii12-36 iihours c. ii48-72 iihours d. ii 60 iihours
c
Under iithe iiDoD iiACAS iicontract, iiwhere iiwould iiyou iiacquire iithe iisoftware iito iiinstall iifor iia iinew iiACAS iideployment?
Select iithe iibest iianswer.
a. iiTenable.com b. iiPatch iiRepository c. iiDevforce d. iiCyber.mil
b
Today iiis iiThursday, iiand iiyou iiare iigetting iiready iito iirun iiyour iiweekly iivulnerability iiscans. iiYour iiplugins iiwere iiupdated iion iiMonday.
Select iithe iicorrect iianswer iibased iion iiyour iistatus.
a. iiIn iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 7 iidays iibefore iiTASKORD-mandated iiscans. b. iiIn iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 14 iidays iibefore iiTASKORD-mandated iiscans. c. iiOut iiof iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 72 iihours iibefore iiTASKORD-mandated iiscans. d. iiOut iiof iicompliance iibecause iiactive iiplugins iimust iibe iiupdated iiwithin ii 24 iihours iibefore iiTASKORD-mandated iiscans.
a
Components iiof iian iiActive iiVulnerability iiScan iiconsist iiof iia iiscan iipolicy, iischedule, iicredentials, iiscan iizone, iiimport iirepository, iiand ii__________.
Select iithe iibest iianswer iito iicomplete iithe iistatement.
a. iiUser iirole b. iiEndpoints/Targets c. iiAssurance iiReport iiCards d. iiAsset iiLists
b
_________ iiare iiadministrative iilevel iiusernames iiand iipasswords ii(or iiSSH iikey iipairs) iiused iiin iiauthenticated iiscans?
Select iithe iibest iianswer iito iicomplete iithe iistatement.
a. iiAudit iifiles b. iiScan iipolicies c. iiCredentials d. iiAsset iilists
c
Networks iiusing iiDynamic iiHost iiConfiguration iiProtocol ii(DHCP) iirequire iithat iithis iiactive iiscan iisetting iibe iienabled iito iiproperly iitrack iihosts.
Select iithe iibest iianswer iifor iithe iistatement.
a. iiRollover iiOption b. iiEnable iiSafe iiChecks c. iiTrack iihosts iiwhich iihave iibeen iiissued iinew iiIP iiaddresses d. iiRemove iivulnerabilities iifrom iiscanned iihosts iithat iihave iibeen iiinactive iifor ii(X iidays)
d. iiLimits iithe iimaximum iinumber iiof iitargets iithat iia iisingle iiNessus iiscanner iiwill iiscan iiat iithe iisame iitime.
You iineed iito iimake iia iichange iito iia iisetting iiin iithe iiBPG iiVulnerability iiScan iiPolicy iiTemplate, iisuch iias iithe iianti-virus iidefinition iiperiod iisetting.
Which iiof iithe iifollowing iiis iia iitrue iistatement?
a. iiSubmit iia iicopy iiof iithe iimodified iitemplate iito iiJFHQ-DODIN iifor iiapproval b. iiMake iithe iichanges iias iineeded, iithere iiare iino iiother iirequirements. c. iiEnsure iithe iichange iiis iidocumented iiand iiapproved iiby iiyou iiAO, iiISSM, iior iilocal iiauthority. d. iiDon't iimake iiany iichanges, iichanging iithe iiBPG-provided iiscan iiis iinot iiallowed iiper iiCCRI iiaudit iiguidelines.
c
To iiget iithe iimost iiaccurate iiresults iion iithe iisecurity iiposture iiof iia iisystem, iiwhich iiof iithe iifollowing iiactions iishould iibe iidone iiprior iito iiscanning?
a. iiUpdate iithe iiplugins b. iiPatch iithe iiscanner c. iiReboot iithe iitarget iihost d. iiLog iiall iiusers iiout iiof iithe iisystem.
a
A iivulnerability iiwill iibe iimarked iias iimitigated iiin iithe iiTenable.sc iirepository iiif iia iisubsequent iiscan iidetermines iithat iithe iivulnerability iiis iino iilonger iipresent iion iithe iiendpoint.
Select iithe iicorrect iianswer.
a. iiTrue b. iiFalse
a
Nessus iiAgents iiare iilightweight iiNessus iiscanners iiinstalled iion iithe iiendpoint, iiaccording iito iithe iiACAS iiAgent iiRapid iiDeployment iiGuide.
Select iithe iibest iianswer.
a. iiTrue b. iiFalse
a
Per iithe iiBest iiPractices iiGuide, iiwhich iiof iithe iifollowing iistatements iiare iitrue? Select iithe iicorrect iianswer(s).
a. iiThe iiTASKORD iidefines iiseveral iitarget iitypes iion iiwhich iiNessus iiAgents iiare iirequired iito iibe iiinstalled. b. iiNessus iiAgents iican iibe iiinstalled iion iiaddition iiendpoints iiabove iiTASKORD iirequirement. c. iiPer iithe iiTASKORD iiorganizations iiendpoints iiwhich iileverage iia iiNessus iiAgents iimust iialso iibe iiscanned iiwith iithe iiNessus iiactive iiscanner iiusing iiACAS iiBest iiPractice iiGuide iiAgent iiDifferential iiscan iipolicy. d. iiIf iiyou iiuse iiNessus iiAgents, iithen iiyou iidon't iineed iiany iiother iiscanning iitools iifor iiACAS. e. iiAll iithe iiabove
a iib iic
It iihas iibeen ii 20 iidays iisince iiyour iilast iiconfiguration ii(STIG) iiscan. iiPer iiFRAGO ii 2 iiof iithe iiTask iiOrder ii20-0020, iiwhich iiof iithe iifollowing iistatements iireflects iiyour iicurrent iicompliance iistatus?
Select iithe iibest iianswer.
In iicompliance iibecause iiconfiguration iiscans iiare iionly iirequired iievery ii 30 iidays.