A security operations technician is searching the log named /var/messages for any events that were associated with a workstation with the IP address 10.1.1.1. Which of the following would provide this information?

An administrator for a small company has one primary server to secure. The administrator would like to limit the subnets that are able to access the server and prevent the server from making outbound connections to the internet. Which of the following would be the least expensive way to achieve this objective?

Which of the following would most likely include language prohibiting end users from accessing personal email from a company device?

A security administrator needs to provide secure access to internal networks for external partners. The administrator has given the PSK and other parameters to the third-party security administrator. Which of the following is being used to establish this connection?

An organization has hired a security analyst to perform a penetration test. The analyst captures 1Gb worth of inbound network traffic to the server and transfers the pap back to the machine for analysis. Which of the following tools should the analyst use to further review the pap?

A security administrator is integrating several segments onto a single network. One of the segments, which includes legacy devices, presents a significant amount of risk to the network. Which of the following would allow users to access to the legacy devices without compromising the security of the entire network?

An organization is considering implementation of load balancing with the following requirements:1.Support both inbound and outbound workloads. 2.Support local clients. 3.Provide more flexibility and duplicate route-based load balancing. Which of the following solutions should the organization consider?

While reviewing the let/shadow file, a security administrator notices files with the same value. Which of the following attacks should the administrator be concerned about?

A penetration tester was able to compromise a host using previously captured network traffic. Which of the following is the result of this action?

An employee, who is using a mobile device for work, is required to use a fingerprint to unlock the device. Which of the following is this an example of?