Official answer to Question 1 is Change Management according to the QAE book. “Patch management involves the correction of software weaknesses and would necessarily follow change management procedures. Change management controls the process of introducing changes to systems and controlling unauthorized changes to production, which are often the points at which weaknesses will be introduced.”

in Question 1 it says most effective way to preventing a weakness from being "introduced"; what patch management would do is plugging weaknesses already operational inside your system. i.e. you would run a win 2018 server and latest patch update or hot fix would patch the weakness already inside that server (which has been already exploited by the hackers now Microsoft has plugged that gap). meaning without that patch, server would run with that weakness in place, hence weakness is already introduced / existing. effective Change management on the other hand would check potential weakness can introduce as a result of new proposed changes. i.e. if the latest proposed change to your file server requires to use SMB version 1, an effective change management system would detect this and prevent it from applying those new changes hence, it has prevented a new weakness being "introduced" into the existing production system.

Answer for Q1 is B: Change Management. Source: official ISACA Q&A

Thanks pak semi, sangat bermanfaat sekali :)

Thank You

Hi in Question 8 even though security best practice answer would be number of admins, in practical world, if you are using WEP encryption with short short bit rate would always guarantee your wifi getting hacked by a wifi hacking tool. Please do a research and see how many tools that you can find to crack a WEP wifi system, its so easy. So, it doesn't matter if you have only one or 10 admins with weak or strong passwords. If I am a hacker, if my initial scan finds WEP being used on your wifi, I would not bother go after the admin password at all. Answer B says number of administrators it doesn't say password strength of the administrators. so you could have 100 administrators but what if they all are using good passwords. in hacker's point of view, in a wifi, unlike trying to hack a system or a website, initial wifi scan would reveal the type of encryption it uses hence if WEP is used, its very easy to hack and guaranteed and it takes less time than going after a brute force attack on admin's password.

Thanks pak

good and sincere advise - more question would have been good...!

thanks pak Semi...

I disagree with number 7. The first thing you do with an infected machine is to get it off the network asap. Then you make a copy of it for potential litigation and criminal investigation. Then you rebuild it but you have to determine how it got hacked so it doesn’t just happen again.

Please made video on ecptxV2 exam guide.

I disagree with Q1, the right answer isn’t patch management, is B which is change management. Change management controls the process of introducing changes to systems. This is often the point at which a weakness will be introduced. Patch management involves the correction of software weaknesses and would necessarily follow change management procedures.

I also disagree with number 8. I’d rather have ten admins running WPA2 then one admin running WEP.

Pak request tutorial video forensik web pesan instan menggunakan Autopsy. Terimakasih

Pak coba bahas cara pake skipfish:)

Your answer on question 1 is definitely wrong :)

Can you please add mode adds between the questions?😂

Humble request please do not share wrong answers as this misguides and discourages students. The Q1 answer mentions "MOST" as the keyword which means it must be a regular practice. Also Change management is a preventive control and detective control so this makes more close to be the correct answer.