DevSecOps試験無料問題集（40題）「Peoplecert PeopleCert DevSecOps 認定」

出題：1

When of the following statements BEST describes penetration testing?

A. A planned cyber attack to check for actionable vulnerabilities

B. A simulated cyber attack to check for exploitable vulnerabilities

C. A coordinated cyber attack to check for planned vulnerabilities

D. A coordinated cyber attack to check simulated vulnerabilities

正解：A 解答を投票する

出題：2

Which of the following BEST describes static application security testing (SAST)?

A. A security testing methodology that examines code for flaws and weaknesses

B. Analyzes code for vulnerabilities by interacting with the application functionality.

C. Analyzes the software composition for vulnerabilities with open-source frameworks

D. A security testing methodology that examines application vulnerabilities as it is running.

正解：B 解答を投票する

出題：3

Monitoring detected that a batch fob started and completed at specific times.
Which of the following is the MOST appropriate response to this event?

A. Operations is notified to investigate

B. A management escalation notification is triggered

C. No action is immediately required

D. An modem is togged to record me runtime

正解：A 解答を投票する

出題：4

When of the following BEST describes now developers and organizations can use the Open web Security Project (OWASP) top ten security risks tor web applications?

A. It provides audit assessment tools to determine if a web application is NIST compliant.

B. It provides strict guidance on the compliance regulations of web application design.

C. It provides a check list for designing applications using microservices architecture

D. It provides a starting place for awareness, education and development of test models

正解：D 解答を投票する

DevSecOps試験無料問題集「Peoplecert PeopleCert DevSecOps 認定」