Infosys Certified Associate in Cyber Security Fundamentals
Practice with real exam-pattern questions for Infosys Certified Associate in Cyber Security Fundamentals. Each question includes a detailed explanation to help you understand the concept, not just memorise the answer. Try 10 questions free — no login required.
Full question bank for this exam + 1,357+ others. Cancel anytime.
Join Premium10 Infosys Certified Associate in Cyber Security Fundamentals practice questions with answers
Real Lex exam-pattern multiple-choice questions for the Infosys Certified Associate in Cyber Security Fundamentals certification. Each question includes the correct answer. The full question bank is available to Premium members.
- Question 1
The five stages of the Service Life Cycle are?
- ✓
Service Strategy, Service Design, Service Transition, Service Management, CSI
Correct - B
Service Strategy, Service Design, Service Transition, Service Operations, CSI
- C
Service Strategy, Service Design, Service Management, Service Operations, CSI
- D
Service Management, Service Design, Service Transition, Service Strategy, CSI
- ✓
- Question 2
A firewall prevents network intrusions. An IDS is used to detect network intrusions. An Incident Response Plan is used to respond to the detected incident. Usually organizations implement all of these security controls. Which security design principle is in play here?
- ✓
Least Privilege
Correct - B
Defense in Depth
- C
Detect in Depth
- D
Separation of Duties
- ✓
- Question 3
An attacker tries to retrieve the data and exploit the websites by altering database by inputting queries. Which attack technique is used?
- ✓
Broken authentication
Correct - B
SQL Injection
- C
XML External Entities
- D
Security Misconfiguration
- ✓
- Question 4
ABC, a well-known clinic lets its patients to access their Personal Health Information (PHI) on its official website. Ria went to ABC clinic for her medical examination one month ago. She needed to access her medical reports again for some reason. She opened the clinic’s official website and found that her report is available in public on that website. Her health condition, health care provision and payment data were listed along with her contact number. (Her name was not mentioned in the report). Select the most appropriate answer:
- ✓
It is PCI DSS violation.
Correct - B
It is SOX violation.
- C
It is HIPPA violation.
- D
There is no violation as Ria’s report did not have her name on it.
- ✓
- Question 5
An MFA scheme uses a password and OTP sent to mobile phone for the purpose of authentication? Which one of the following authentication factors are used here?
- ✓
Something the user knows AND something the user has
Correct - B
Something the user has AND something the user is
- C
Something the user is AND something the user knows
- D
Only one authentication factor is used
- ✓
- Question 6
A ransomware is a malicious software that encrypts the hard disk of the victim computer. The ransomware demands ransom in the form of cryptocurrency such as Bitcoins, to decrypt the hard disk. Ransomware belongs to which of the following STRIDE attacks?
- ✓
Elevation of Privilege
Correct - B
Denial of Service
- C
Spoofing
- D
Tampering
- ✓
- Question 7
An application inserts into a database, the value received in the HTTP Request header "Referer". Which of the following are TRUE? (Choose two options)
- ✓
Input validation must be done for all HTTP request headers.
Correct - B
Input validation is not needed for any HTTP request headers, as they are generated by browser and cannot be provided by users
- C
The "Referer" header needs to be "input validated" to prevent SQL injection.
- D
All HTTP header values can be changed/tampered using special tools like an interception proxy.
- ✓
- Question 8
Which of the following are TRUE with respect to shared key cryptosystems? (Choose two correct options)
- ✓
Uses private and public keys
Correct - B
Provides Non-Repudiation
- C
Requires secure exchange of keys before establishing secure communication.
- D
Faster than asymmetric cryptography systems.
- ✓
- Question 9
A Network Administrator plans to build a Local Area Network with single point of control. The Local Area Network contains a switch, 30 desktops, 2 printers, and a file server. The admin connects 30 desktops, 2 printers and a file server with the switch, also enabled communication between those devices. What type of network topology the local area network refers to?
- ✓
Bus Topology
Correct - B
Ring Topology
- C
Star Topology
- D
Mesh Topology
- ✓
- Question 10
192.168.10.35 is the IP address assigned to a host with subnet mask value 255.255.255.224 . Identify the network address and broadcast address for the provided host IP address.
- ✓
192.168.10.32
Correct - B
192.168.10.63
- C
192.168.10.30
- D
192.168.10.31
- E
192.168.10.65
- ✓
More in Security
Infosys Certified CyberArk Defender
Infosys Certified Offensive Security Professional
Infosys Certified Associate in Cyber Defense Center
Pay once. Clear every cert this year.
One subscription, full Telegram channel access, every PDF posted during your membership.
- Full access to all 1,357+ certifications
- Monthly updated question banks
- Telegram private channel access
- Cancel anytime
- Everything in Monthly
- Save ₹2,100 vs monthly billing
- Priority answer key requests
- Best for increasing DQ score fast
- Everything in Quarterly
- Lifetime channel access — no renewals
- All future certifications included
- Priority response from admin team
Common questions, straight answers.
A monthly-updated Telegram channel where we post real exam-pattern question banks and detailed answer keys for 1,357+ Infosys Lex certifications. You join once, you get every PDF posted during your membership.
Right after payment on our Graphy page, you'll receive a private invite link to the Telegram channel. Access is instant — usually under 30 seconds.
We compile question banks from the actual Lex test pattern, sourced and verified by 180K+ community members who've recently cleared these exams. Match rate is consistently 85–95%.
Every single month. When Infosys rolls out new versions of certifications, we post updated dumps within 7–10 days. You'll see channel activity weekly.
Clearing certifications is one of the highest-weighted DQ factors. Members typically clear 3–5 certifications in their first 3 months, which moves DQ scores up by a full band.