The president of a regional bank likes to frequently provide SOC tours to potential investors. Which of the following policies BEST reduces the risk of malicious activity occurring after a tour?
A malicious investor would not be able to take advantage of anything gained until after the tour if the swiped a USB, looked at or stole documents. If their was a clean desk policy then that would prevent issues after a tour.
There is no clarification on where these desks are located in the bank during or after a tour, so one could ask if these desks were located in the main lobby where anyone could pass by, so a clean desk policy would eliminate anyone from grabbing something off of a desk.
CLEAN DESK
'After A tour' not 'After THE tour.' So 'a tour' is asking for what is the best policy in general to apply for when visitors are on a tour. Another poorly worded question and that's why many have voted for C.
Access control is irrelevant here because a tour means one is guided by another. They will be constantly monitored and unable to access restricted areas or systems. An outside contractor doing work may be able to roam freely.
I chose D. Clean Desk
This policy would prevent the visitors from seeing confidential documents or sensitive material that they would use for malicious activity AFTER the tour
In the study guide, under Security Policy's, Standards, and Management an Access Control Policy is NOT noted as a Personal Management Policy.
However, if you think of this Access Control policy as physical access controls than yes that makes sense as a preventative DURING the tour and AFTER the tour but if you think of Access Control as the schemas or privileges to secure access to devices than this policy would not makes sense.
Access control policies are designed to limit and control who has access to specific areas or information. After SOC tours, it's essential to ensure that individuals who attended the tour do not have unauthorized access to sensitive areas or data. Access control policies can help restrict access to only authorized personnel, reducing the risk of malicious activity after the tour.
Clean desk is irrelevant if intruders are able to access the site AFTER the tour.
You try to stop intruders at the front door, not AFTER they are already in your building.
The wording is 'after a tour' not 'after the tour.' Another poorly worded question but with big implications. If it was after this specific tour - 'the tour' then clean desk would be ineffective. But the question is asking a more general question about how to maintain security during any tour, which would be clean desk.
ANSWER C: Access Control
Clean desk only one potential risk but access control will prevent not only desks but also other areas, for example Limit access: Ensure that only authorized individuals are allowed to enter the SOC and other sensitive areas.
Visitor restrictions: Specify rules for visitors, such as escort requirements, visitor badges, and supervised access.
Restrict privileges: Define the level of access and actions that visitors can take during the tour, ensuring that they cannot compromise security or access sensitive information.
The keyword here is "AFTER the tour." Having a clean desk policy is pointless if you do it AFTER the tour.
The most coherent answer would be "Access Controls," i.e., checking that everyone who came on the tour has left and no one remains in the organization.
Access control will prohibit them from entering high-risk areas. I don't get clean desk policy, what, are they going to steal random papers, or hope idiots will leave pendrives with valuable data on desk? These are not random people, those are investors, one slip up and their reputation is doomed.
As others have pointed out, key words are "after the tour". And yes, absolutely people will leave sensitive information in plain view if there's not a policy against it.
Your last sentence also would apply if someone slipped away during the tour and entered an unauthorized area.
Worked Desktop Support for many years....You would be shocked at the volume of confidential information left on the desk. Passwords under keyboards, pin drives in usb ports, etc. The "idiots" are out there. Beware!
question mentioned "reduces the risk of malicious activity occurring after a tour", the key part is AFTER. C option focused on Access Control is DURING the tour precautions. So answer D.
IMO after a tour situation access control would best best measure to take coz infrastructure should be laid tight control. Even any password on desk only authorized person can access into system.
Clean Desk - If the investors are already on a tour of the SOC then access management is already out the window, your best practice at this point is to make sure your desk is clear of anything sensitive including your screen(s)
The clean desk policy would be the best policy to reduce the risk of malicious activity occurring after a SOC (Security Operations Center) tour. A clean desk policy requires employees to keep their work areas tidy and free from sensitive information when they are not present. This policy helps prevent unauthorized individuals, including potential investors during a tour, from gaining access to sensitive documents or information that could be used for malicious purposes.
Yes, the policy should be enacted before the tours and the personnel should be following the policy at all times. The wording is tricky, because all of the options should be done "before the tour" but which one would prevent exploitation after the tours. Clean desk is the best answer
The way we understood the question makes the correct answer confusing.
As per my understanding, the answer should point to what should be done after the tour which makes C the correct answer.
You don't clean desk after a tour in the SOC, u do that before.
i think you are not understanding the question. It is not asking what you do after the tour, it is asking what action to take to avoid issues once the tour is over.
If someone were to leave proprietary info on view this could be seen by a visitor, same as if someone were to leave network diagrams, credentials etc on view
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Boats
Highly Voted 2 years, 11 months agoSutokuto
Highly Voted 2 years, 9 months agoFeeter
Most Recent 1 year agoklinkklonk
1 year, 6 months agokeytosuccess
1 year, 7 months agoImBleghk
1 year, 7 months agoAceVander
1 year, 8 months agoIGasset
1 year, 9 months agoSebatian20
1 year, 10 months agoklinkklonk
1 year, 6 months agogoodmate
1 year, 10 months agoklinkklonk
1 year, 6 months agodemianUY
1 year, 10 months agoklinkklonk
1 year, 6 months agoAfel_Null
1 year, 10 months agodaddylonglegs
1 year, 10 months agoRichwayst
1 year, 10 months agogoodmate
1 year, 10 months agoJacob_Kramer1995
1 year, 11 months agosujon_london
2 years agoDogeo
2 years agoApplebeesWaiter1122
2 years agoKurt43
1 year, 10 months agodaddylonglegs
1 year, 10 months agoXynned
2 years, 1 month agoDriftandLuna
2 years ago