← Back to exam page

GCCC GIAC Critical Controls Certification (GCCC)

Loading demo links...

Showing 4–6 of 10 questions

Question 4

Which of the following is a requirement in order to implement the principle of least privilege?

Select an option, then click Submit answer.

  • Mandatory Access Control (MAC)

  • Data normalization

  • Data classification

  • Discretionary Access Control (DAC)


Question 5

What could a security team use the command line tool Nmap for when implementing the

Inventory and Control of Hardware Assets Control?

Select an option, then click Submit answer.

  • Control which devices can connect to the network

  • Passively identify new devices

  • Inventory offline databases

  • Actively identify new servers


Question 6

An organization has implemented a policy to continually detect and remove malware from its network. Which of the following is a detective control needed for this?

Select an option, then click Submit answer.

  • Host-based firewall sends alerts when packets are sent to a closed port

  • Network Intrusion Prevention sends alerts when RST packets are received

  • Network Intrusion Detection devices sends alerts when signatures are updated

  • Host-based anti-virus sends alerts to a central security console