A ransomware attack has hit your organization. Encrypted files have disrupted critical business functions. You’ve isolated the infected systems, notified leadership, and begun forensic analysis. The CEO is demanding immediate restoration. Backups are available but untested. What is the BEST next action? A. Begin restoration from backups immediately. B. Pay the ransom to recover data quickly. C. Validate the integrity of backups before starting restoration. D. Rebuild affected systems from scratch using original install media.

During an internal audit, your team discovers several critical systems were excluded from the last vulnerability scan. The scanning tool was configured manually, and the administrator forgot to include new subnets. Management wants assurance that this oversight won’t happen again. What is the BEST step to take? A. Assign vulnerability scanning responsibilities to a more experienced team member. B. Increase scan frequency to weekly instead of monthly. C. Integrate subnet discovery automation into the scanning workflow. D. Outsource vulnerability management to a third party.

An employee at a large enterprise has moved to a new department. Their new role does not require access to the project management system used in the previous department. However, access is still active. What principle has been violated and what should the IAM team implement to prevent similar issues? A. Principle of Least Privilege; Implement RBAC with periodic access reviews. B. Separation of Duties; Require dual approval for role changes. C. Principle of Accountability; Require stronger authentication methods. D. Need to Know; Use SSO to streamline access control.

Anyone found a good mnemonic for remembering the order for the levels of the capability maturity model? I keep mixing them up in test questions. Initial stage I get but get stuck mixing the repeatable, defined, and managed order

Which of the following is most helpful in applying the principle of LEAST privilege? A. Establishing a sandboxing environment B. Setting up a Virtual Private Network (VPN) tunnel C. Monitoring and reviewing privileged sessions D. Introducing a job rotation program