What is the relationship between security hardening and an attack surface?1 pointSecurity hardening diminishes the attack surface. Security hardening increases the attack surface.Security hardening expands the attack surface. Security hardening permanently eliminates the attack surface. 3.Question 3

Please choose the correct answer from the followingWhat is a characteristic feature of the attack surface in terms of its size and opportunities for attackers?Smaller attack surface, fewer opportunities for attackersLarger attack surface, fewer opportunities for attackersLarger attack surface, more opportunities for attackersThe size of the attack surface does not affect attacker opportunities

Question 1What are the purposes of performing a patch update for security hardening? Select all that apply.1 pointUpgrading an operating system to the latest software version. Requiring a user to verify their identity to access a system or network.Preventing malicious actors from flooding a network.Fixing known security vulnerabilities in a network or services.2.Question 2What is the term for all the potential system vulnerabilities that a threat actor could exploit?1 pointRiskSecurity architectureAttack surfaceSecurity challenge3.Question 3Fill in the blank: Hiring a security guard is an example of a _____ security hardening practice.1 pointphysicalvirtualnetwork-focusedsoftware-based4.Question 4To help improve the security of a business, its in-house security team is approved to simulate an attack that will identify vulnerabilities in business processes. What does this scenario describe? 1 pointThe Ping of DeathPacket sniffingA Distributed Denial of Service (DDoS) attackPenetration testing5.Question 5Which of the following are OS hardening tasks? Select three answers. 1 pointUsing secure encryption standards  Implementing multifactor authentication Regularly installing updatesInstalling security cameras6.Question 6Fill in the blank: A/An _____ is a documented set of specifications within a system that is used as a basis for future builds, releases, and updates1 pointvirtual private network installationinternet control message protocol updatenetwork segmentbaseline configuration7.Question 7Multi-factor authentication (MFA) is an example of which type of hardening practice?1 pointNetwork log analysisOS hardeningNetwork hardeningAttack surface8.Question 8In what way might port filtering be used to protect a network from an attack?1 pointTo create isolated subnets for different departments in an organization To increase the attack surface in a networkTo disable unused ports in order to reduce the attack surfaceTo inspect, analyze, and react to security events based on their priority9.Question 9A security team considers the best way to handle the different security zones within their network. They prioritize protecting the restricted zone by separating from the rest of the network and ensuring it has much higher encryption standards. What does this scenario describe? 1 point Penetration testingPatch updatingNetwork segmentationCloud hardening10.Question 10How can a security professional confirm that no unverified changes have occurred within a cloud server?1 pointEstablish multifactor authentication (MFA)Perform a penetration testCompare the server baseline image to the data in cloud servers Use port filtering to block or allow certain updates

3.Question 3Fill in the blank: The stages of a social engineering attack include to prepare, establish trust, use persuasion tactics, and ____.1 pointstay informed of security trendsspread awareness with othersevaluate defensesdisconnect from the target

Please choose the correct answer from the followingHow does external perimeter security contribute to attack surface management?By being the only necessary layer of defenseBy focusing solely on internal threatsBy acting as the first layer of defense against intrusionsBy securing the network without additional layers

Please choose the correct answer from the followingWhat does the attack surface of an organization comprise?Only unpatched vulnerabilitiesOnly user risk factorsOnly entry pointsEntry points, unpatched vulnerabilities, misconfigurations, and user risk factors