Weekend Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple70

Home
GIAC
Cyber Security
GCCC
GIAC Critical Controls Certification (GCCC) Questions and Answers

Pass the GIAC Cyber Security GCCC Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam GCCC Premium Access

View all detail and faqs for the GCCC exam

Go to Exam

460 Students Passed

86% Average Score

91% Same Questions

Viewing page 1 out of 3 pages

Viewing questions 1-10 out of questions

Questions # 1:

Which of the following archiving methods would maximize log integrity?

Options:

DVD-R

USB flash drive

Magnetic Tape

CD-RW

Answer

Questions # 2:

An organization wants to test its procedure for data recovery. Which of the following will be most effective?

Options:

Verifying a file can be recovered from backup media

Verifying that backup process is running when it should

Verifying that network backups can’t be read in transit

Verifying there are no errors in the backup server logs

Answer

Questions # 3:

An organization has implemented a control for penetration testing and red team exercises conducted on their network. They have compiled metrics showing the success of the penetration testing (Penetration Tests), as well as the number of actual adversary attacks they have sustained (External Attacks). Assess the metrics below and determine the appropriate interpretation with respect to this control.

Question # 3

Options:

The blue team is adequately protecting the network

There are too many internal penetration tests being conducted

The methods the red team is using are not effectively testing the network

The red team is improving their capability to measure network security

Answer

Questions # 4:

An organization has implemented a policy to continually detect and remove malware from its network. Which of the following is a detective control needed for this?

Options:

Host-based firewall sends alerts when packets are sent to a closed port

Network Intrusion Prevention sends alerts when RST packets are received

Network Intrusion Detection devices sends alerts when signatures are updated

Host-based anti-virus sends alerts to a central security console

Answer

Questions # 5:

When evaluating the Wireless Access Control CIS Control, which of the following systems needs to be tested?

Options:

Log management system

802.1x authentication systems

Data classification and access baselines

PII data scanner

Answer

Questions # 6:

Dragonfly Industries requires firewall rules to go through a change management system before they are configured. Review the change management log. Which of the following lines in your firewall ruleset has expired and should be removed from the configuration?

Question # 6

Options:

access-list outbound permit tcp host 10.1.1.7 any eq smtp

access-list outbound deny tcp any host 74.125.228.2 eq www

access-list inbound permit tcp 8.8.0.0 0.0.0.255 10.10.12.252 eq 8080

access-list inbound permit tcp host 8.8.207.97 host 10.10.12.100 eq ssh

Answer

Questions # 7:

An Internet retailer's database was recently exploited by a foreign criminal organization via a remote attack. The initial exploit resulted in immediate root-level access. What could have been done to prevent this level of access being given to the intruder upon successful exploitation?