Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC Exam GCCC Topic 6 Question 40 Discussion

Actual exam question for GIAC's GCCC exam
Question #: 40
Topic #: 6
[All GCCC Questions]

An organization has implemented a policy to continually detect and remove malware from its network. Which of the following is a detective control needed for this?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Bette at Jan 26, 2024, 10:55 PM

Limited Time Offer

25%

Off

Get Premium GCCC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Shasta
3 months ago
Option D is the clear winner here. Centralized monitoring and alerting from host-based antivirus is the textbook detective control for this scenario.
upvoted 0 times
...
Cherilyn
3 months ago
I'm gonna go with E) The organization should just unplug the whole network. No malware if there's no network, right?
upvoted 0 times
...
Kristal
3 months ago
D, definitely D. Host-based anti-virus sending alerts to a central console is the way to go. Gotta keep that malware under control!
upvoted 0 times
Matilda
2 months ago
True, having multiple detective controls in place can strengthen the organization's ability to detect and remove malware from the network.
upvoted 0 times
...
Lai
2 months ago
Host-based firewall sending alerts when packets are sent to a closed port can also help in detecting malware activity.
upvoted 0 times
...
Sylvie
2 months ago
I think Network Intrusion Detection devices sending alerts when signatures are updated could also be helpful in detecting malware.
upvoted 0 times
...
Santos
2 months ago
I agree, having alerts sent to a central console makes it easier to monitor and respond to malware threats.
upvoted 0 times
...
...
Christiane
3 months ago
Haha, I bet the correct answer is C. Network Intrusion Detection devices sends alerts when signatures are updated. That's the most IT-sounding answer, so it's gotta be right!
upvoted 0 times
Cassie
2 months ago
User 3: Actually, I think the answer is C) Network Intrusion Detection devices sends alerts when signatures are updated
upvoted 0 times
...
Celia
2 months ago
User 2: I disagree, I believe the correct answer is D) Host-based anti-virus sends alerts to a central security console
upvoted 0 times
...
Lindsey
2 months ago
User 1: I think the answer is A) Host-based firewall sends alerts when packets are sent to a closed port
upvoted 0 times
...
...
Lanie
4 months ago
But wouldn't detecting malware require monitoring network traffic, which is why C) makes more sense?
upvoted 0 times
...
Lavelle
4 months ago
I'm going with B. Network Intrusion Prevention sends alerts when RST packets are received. That seems like a good way to detect and respond to potential malware activities.
upvoted 0 times
Latia
3 months ago
I agree, having alerts sent to a central console can help with centralized monitoring and response.
upvoted 0 times
...
Micaela
3 months ago
I think D is a good option too. Host-based anti-virus sends alerts to a central security console.
upvoted 0 times
...
Simona
3 months ago
I think D could also be a good choice, with host-based anti-virus sending alerts to a central security console.
upvoted 0 times
...
Trinidad
3 months ago
I agree, B sounds like a good option for detecting malware.
upvoted 0 times
...
...
Keshia
4 months ago
I disagree, I believe the answer is D) Host-based anti-virus sends alerts to a central security console.
upvoted 0 times
...
Lanie
4 months ago
I think the answer is C) Network Intrusion Detection devices sends alerts when signatures are updated.
upvoted 0 times
...
Albert
4 months ago
I'm not sure, but I think C) Network Intrusion Detection devices sends alerts when signatures are updated could also be a good detective control.
upvoted 0 times
...
Thurman
4 months ago
I agree with Tanja. Having alerts sent to a central security console would help in detecting and removing malware efficiently.
upvoted 0 times
...
Emile
4 months ago
I think the correct answer is D. Host-based anti-virus sends alerts to a central security console. This is a detective control that continuously monitors for and detects malware on the network.
upvoted 0 times
Maddie
3 months ago
True, that could also help in detecting suspicious activity on the network.
upvoted 0 times
...
Barbra
3 months ago
But what about option A? Host-based firewall sending alerts when packets are sent to a closed port could also be a detective control.
upvoted 0 times
...
Quentin
3 months ago
That makes sense, it would help in detecting malware on the network.
upvoted 0 times
...
Detra
3 months ago
I think the correct answer is D. Host-based anti-virus sends alerts to a central security console.
upvoted 0 times
...
...
Tanja
4 months ago
I think the answer is D) Host-based anti-virus sends alerts to a central security console.
upvoted 0 times
...

Save Cancel