Spring Sale Limited Time 75% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple75

Pass the APICS CPIM CPIM-8.0 Questions and answers with Dumpstech

Exam CPIM-8.0 Premium Access

View all detail and faqs for the CPIM-8.0 exam

Go to Exam
Practice at least 50% of the questions to maximize your chances of passing.
Viewing page 4 out of 13 pages
Viewing questions 46-60 out of questions
Questions # 46:

In a make-to-order (MTO) production environment, fluctuations in sales volumes are managed by adjustments to the:

Options:

A.

Customer order backlog

B.

Finished goods inventory

C.

Minimum order quantity (MOQ)

D.

Process cycle time

Questions # 47:

What is a malicious activity that overwhelms a Wireless Access Point (WAP)?

Options:

A.

Identification spoofing

B.

Signal jamming

C.

Pin attack

D.

War driving

Questions # 48:

The Business Continuity Plan (BCP) has multiple components. The information security plan portion must prioritize its efforts. Which 3 aspects of information security MUST be prioritized?

Options:

A.

Confidentiality, integrity, availability

B.

Physical security, access control, asset protection

C.

Intent, capability, opportunity

D.

Threat level, network security, information disposal

Questions # 49:

What BEST describes the end goal of a Disaster Recovery (DR) program?

Options:

A.

Review the status of mission-critical applications.

B.

Prevent business interruption.

C.

Continue business operations during a contingency.

D.

Restore normal business operations.

Questions # 50:

A Software As A Service (SaaS) solution was compromised due to multiple missing security controls. The SaaS deployment was rushed and the Software Development Life Cycle (SDLC) was not followed. Which SDLC phase would have been MOST effective in preventing this failure?

Options:

A.

Maintenance

B.

Design

C.

Testing

D.

Requirements

Questions # 51:

Which of the following criteria is used to determine safety stock in a distribution center (DC)?

Options:

A.

Economic order quantity(EOQ)

B.

Seasonal index value

C.

Alpha factor level

D.

Probability of stocking out

Questions # 52:

A traffic analysis on an organization's network identifies a significant degree of inefficient resource use as a result of broadcast traffic. The organization wants to reduce the scope of the broadcasts without impeding the flow of traffic. Which of the following devices is the BEST choice to implement to achieve this goal?

Options:

A.

Proxy

B.

Firewall

C.

Router

D.

Switch

Questions # 53:

Which of the following is a system architecture in a data protection strategy?

Options:

A.

Logical isolation

B.

Network segmentation

C.

Distributed network

D.

Access enforcement

Questions # 54:

An organization has to conduct quarterly reviews of user authorization access to its primary financial application. Which position is responsible for performing these reviews?

Options:

A.

Internal audit manager

B.

Information Security Manager (ISM)

C.

Data custodian

D.

Data owner

Questions # 55:

Which of the following roles is the BEST choice for classifying sensitive data?

Options:

A.

Information system owner

B.

Information system security manager

C.

Information owner

D.

Information system security officer

Questions # 56:

A web application is found to have SQL injection (SQLI) vulnerabilities. What is the BEST option to remediate?

Options:

A.

Use prepared statements with parameterized queries

B.

Do allow or use Structured Query Language (SQL) within GET methods.

C.

Use substitution variables for all Structure Query Language (SQL) statements.

D.

Do not allow quote characters to be entered.

Questions # 57:

An organization currently has a network with 55,000 unique Internet Protocol (IP) addresses in their private Internet Protocol version 4 (IPv4) network range and has acquired another organization and must integrate their 25,000 endpoints with the existing, flat network topology. If subnetting is not implemented, which network class is implied for the organization's resulting private network segment?

Options:

A.

A

B.

B

C.

C

D.

E

Questions # 58:

A financial institution is implementing an Information Technology (IT) asset management system. Which of the following capabilities is the MOST important to include?

Options:

A.

Logging the data leak protection status of the IT asset

B.

Tracking the market value of the IT asset

C.

Receiving or transferring an IT asset

D.

Recording the bandwidth and data usage of the IT asset

Questions # 59:

A potentially life-threatening vulnerability is found in vendor software that is used to manage critical systems. Which of the following is generally considered the BEST method to disclose the vulnerability from an ethical hacking perspective?

Options:

A.

Coordinated disclosure because it compels the vendor to act within a certain time frame

B.

Bug bounty disclosure programs because the researcher should get paid for finding the vulnerability

C.

Full public disclosure because the vulnerability is serious and the organizations using the software need to know quickly

D.

Full vendor disclosure because it is the vendor’s responsibility to disclose vulnerabilities to its customers

Questions # 60:

Which of the following is the BEST reason to conduct a penetration test?

Options:

A.

To verify compliance with organizational patching policies.

B.

To document that all relevant patches have been installed.

C.

To identify technical vulnerabilities.

D.

To determine if weaknesses can be exploited.

Viewing page 4 out of 13 pages
Viewing questions 46-60 out of questions