Members
About LLPA
Vendors
Events
Digital Skills Cup
AI Festival

IT Security - Digital Skill Cup 2026

Digital Skills Cup 2026

Welcome to the Digital Skills Cup for IT Security

Once you register with your name and email, the quiz starts immediately.
You have 5 minutes to complete the quiz.
No pauses. No switching between windows, no copy-pasting.
Scoring is based on the number of correct answers and the lower time to complete the quiz, in case of a tie.
Use a valid email address and your real name for registration.
You have 1 attempt.
Good luck :)

First Name

Last Name

Email

Country

I agree with the Terms and Conditions and Privacy statement

Time Remaining:

Digital Skill Cup 2026 - IT Security All

1 / 20

Question 1

Which tool in Microsoft Azure helps monitor security configurations and provides recommendations to protect cloud resources?

Azure Monitor

Microsoft Defender for Cloud

Azure DevOps

Microsoft Word Online

Question 2

Which Microsoft service provides SIEM and SOAR capabilities?

Microsoft Defender for Cloud

Microsoft Sentinel

Microsoft Intune

Microsoft Purview

Question 3

Where are Windows service configurations stored?

In the Windows registry

In the Regedit tool

In the registry key HKLMSYSTEMControlSet001Services

On disk in the file WindowsSystem32configSYSTEM

Question 4

In AWS IAM, which practices reduce the risk of privilege escalation?

Avoiding wildcard permissions in policies

Enforcing MFA on privileged roles

Using long-lived access keys for automation

Regularly reviewing and pruning unused roles

Question 5

Which characteristics distinguish a secure software supply chain?

Signed and verified build artifacts

Dependency vulnerability scanning

Manual code reviews only at release time

Reproducible builds

Question 6

Which AWS product is a frontier agent that proactively secures your applications throughout the development lifecycle across all your environments?

AWS Security Agent

AWS Security Hub

AWS Control Tower

Question 7

Which statements about the security.txt file (on the web) are true?

The security.txt file contains security rules for the WAF

The security.txt file should be available on the website in the .well-known directory

The security.txt file should include information on where to report website security issues

The security.txt file may contain a link to a bug bounty program

Question 8

What is multi-factor authentication (MFA)?

Multiple passwords

Authentication using two or more verification factors

Encryption method

Network segmentation

Question 9

Threat management is a process that is used by cybersecurity professionals to prevent cyberattacks, detect cyberthreats and respond to security incidents. Many modern threat management systems use frameworks that provide comprehensive guidance to improve information security and cybersecurity risk management for private sector organizations. Which Framework is plublished by the NIST and consists of guides, standards, best practices and five core functions, namely to identify, protect, detect, respond and recover?

NIS2

GDPR

Cybersecurity Framework (CSF) 2.0

DORA

Question 10

Which Microsoft 365 feature is used to prevent sensitive information from being shared?

Sensitivity Labels

Data Loss Prevention (DLP)

Retention Policies

eDiscovery

Question 11

What is a “Zero-Day Exploit”?

A vulnerability unknown to the software vendor and without an available patch

A virus that deletes itself after 24 hours

An attack that occurs exactly at midnight

A data compression method

Question 12

In AWS, which actions align with IAM security best practices?

Using the AWS root account protected by MFA for routine administrative tasks to simplify account management

Attaching broad Administrator Access policies to all IAM users

Using roles instead of long lived access keys, enforcing MFA and reviewing unused permissions

Embedding AWS access keys in encrypted application code repositories to streamline automated deployments across environments

Question 13

Which approach is generally recommended for modern web APIs that need to authenticate third party clients?

Sending user credentials with each request over HTTPS, assuming transport encryption alone sufficiently mitigates credential exposure risks

Using Oauth 2.0/OpenID Connect with short lived access tokens

Using API keys hard coded in client applications

Restricting API access solely through IP whitelisting while avoiding token-based mechanisms due to perceived implementation complexity

Question 14

Which Microsoft tool helps manage and enforce security policies on user devices?

Microsoft Intune

Microsoft Defender for Identity

Microsoft Sentinel

Microsoft Entra Connect

Question 15

Which on-prem security control helps prevent unauthorized software execution?

Disk defragmentation

Application whitelisting

DHCP

Load balancing

Question 16

Which of the following passwords is complex?

Pa$$w0rd

pass123

$pa.ssw*ord_

Password1

Question 17

Which type of malware disguises itself as legitimate software?

Worm

Trojan

Rootkit

Spyware

Question 18

What does Zero Trust security assume?

Internal networks are trusted

Continuous verification is required

Least privilege access

Perimeter security is sufficient

Question 19

According to the CIA Triad, which of the below-mentioned element is not considered in the triad?

Confidentiality

Integrity

Authenticity

Availability

Question 20

What is encryption at rest?

Encrypting data during transmission

Encrypting stored data on disk

Hashing passwords only

Securing network traffic

Quiz Results

Good job! Thank you for participating in the Digital Skills Cup 2026! We have sent you the quiz results by email.

Leading Learning Partners Association

The Base B
Evert van de Beekstraat 1-104
1118 CL Schiphol, Amsterdam
The Netherlands

info@thellpa.com
LinkedIn

Terms of Service
Privacy Policy

Manage cookie preferences