Members
About LLPA
Vendors
Events
Digital Skills Cup
AI Festival

IT Security - Digital Skill Cup 2026

Digital Skills Cup 2026

Welcome to the Digital Skills Cup for IT Security

Once you register with your name and email, the quiz starts immediately.
You have 5 minutes to complete the quiz.
No pauses. No switching between windows, no copy-pasting.
Scoring is based on the number of correct answers and the lower time to complete the quiz, in case of a tie.
Use a valid email address and your real name for registration.
You have 1 attempt.
Good luck :)

First Name

Last Name

Email

Country

I agree with the Terms and Conditions and Privacy statement

Time Remaining:

Digital Skill Cup 2026 - IT Security All

1 / 20

Question 1

Which Azure service provides centralized security posture management and threat protection recommendations across Azure resources?

Azure Policy

Azure Monitor

Azure Advisor

Microsoft Defender for Cloud

Question 2

Which of the following statements is correct about the firewall?

It is a device installed at the boundary of a company to prevent unauthorized physical access

It is a device installed at the boundary of an incorporate to protect it against the unauthorized access

It is a kind of wall built to prevent files form damaging the corporate

None of the above

Question 3

Which type of malware disguises itself as legitimate software?

Worm

Trojan

Rootkit

Spyware

Question 4

In Microsoft Active Directory, which attack techniques specifically target Kerberos authentication?

Kerberoasting

Golden Ticket attacks

Pass-the-Hash

AS-REP Roasting

Question 5

Which practices together best illustrate a defense in depth approach for a web application?

Deploying a next-generation firewall at the network perimeter, enforcing strong password policies for all users, and performing annual penetration testing focused only on external threats

Using endpoint antivirus software combined with regular system patching and centralized authentication, while assuming that internal network traffic is inherently trusted

Encrypting backups but allowing broad admin access in productIon

Combining network segmentation, least privilege access, endpoint protection and application input validation

Question 6

What is the main goal of phishing?

To increase internet speed

To update the operating system

To steal sensitive data such as passwords or credit card information

To clear the RAM

Question 7

Which are examples of applying the principle of least privilege to human service identities?

Assigning broad administrative roles to all IT staff to avoid operational delays, assuming internal trust and audit logs sufficiently mitigate misuse risks

Granting developers permanent write access to production systems to simplify deployment and troubleshooting processes

Allowing developers full production DB admin rights permanently

Granting only the permissions required for tasks and reviewing roles regularly for removal of excess access

Question 8

What is the most secure way to allow an Azure VM to access an Azure Key Vault secret without storing credentials on the VM?

Use Managed Identity for Azure resources

Store the secret in the VM’s environment variables

Use a Shared Access Signature (SAS) token

Embed the secret in the application config file

Question 9

What are effective controls for reducing the impact of ransomware in enterprise environments?

Immutable or write-once backups

Network segmentation

Endpoint detection and response (EDR)

Disabling user account control (UAC)

Question 10

Which Azure service is a cloud-native SIEM and SOAR solution?

Azure Monitor

Microsoft Defender XDR

Microsoft Sentinel

Azure Policy

Question 11

The private communication of individuals and organizations is protected online by cryptography. Existing public-key cryptography (also known as asymmetric cryptography) is based on the difficulty of factoring and the difficulty of calculating elliptic curve discrete logarithms. It is expected that in the near furture these two problems will be readily and efficiently solved by what type of computing power?

Quantum

Agentic AI

Artificial superintelligence (ASI)

Question 12

What is the primary purpose of a Security Information and Event Management (SIEM) system?

Prevent unauthorized access

Monitor and analyze security events

Encrypt sensitive data

Patch vulnerabilities

Question 13

Microsoft's ongoing commitment to help organizations stay ahead of evolving cybersecurity threats and prepare for the era of Post-Quantum Cryptography algorithms are made generally available with the release of which Windows Server version?

Windows Server 2019

Windows Server 2022

Windows Server 2025

Question 14

What is a “Brute-Force Attack”?

A physical attack on the data center

Automated trial of all possible password combinations

Intercepting Wi-Fi signals

Sending spam emails

Question 15

In AWS, which service records API calls for auditing?

CloudTrail

GuardDuty

IAM

KMS

Question 16

The TLS/SSL protocols secure an individual connection between a client and a server, at what layer of the OSI (Open Systems Interconnection) model are TLS/SSL situated?

Network Layer

Transport Layer

Presentation Layer

Question 17

What does the Zero Trust security model assume?

All internal users are trusted

Trust is based on network location

Never trust, always verify

Security is optional

Question 18

Which steps form a solid foundation for incident detection and response in an enterprise?

Deploying centralized logging and SIEM, defining alert playbooks and regularly exercising incident response

Logging critical errors on individual servers without central correlation, formal procedures, or defined roles, assuming administrators will manually investigate incidents as they arise

Performing ad hoc incident handling based on administrator experience, without documented playbooks, predefined communication channels, or escalation paths

Waiting for regulators to notify you of incidents

Question 19

You need to ensure Azure Storage accounts are not publicly accessible over the internet. Which control best enforces this at scale?

Azure RBAC role assignments

Azure Bastion

Azure Policy (deny public network access / enforce private endpoints)

Azure Monitor alerts

Question 20

Which AWS service provides centralized logging of API calls for auditing and compliance?

Amazon CloudWatch

AWS Config

AWS CloudTrail

AWS Inspector

Quiz Results

Good job! Thank you for participating in the Digital Skills Cup 2026! We have sent you the quiz results by email.

Leading Learning Partners Association

The Base B
Evert van de Beekstraat 1-104
1118 CL Schiphol, Amsterdam
The Netherlands

info@thellpa.com
LinkedIn

Terms of Service
Privacy Policy

Manage cookie preferences