CNDA Study Guide 2026
Everything you need to pass the CNDA exam in one place: the exam format, every topic to study, real practice questions with explanations, flashcards, and full-length practice tests. Free, no sign-up needed.
📋 CNDA Exam Format at a Glance
📚 CNDA Topics to Study (21)
✍️ Sample CNDA Questions & Answers
1. A network defender detects an access point broadcasting the corporate SSID but with a different BSSID and stronger signal. This is most likely which type of attack?
An evil twin is a rogue AP mimicking a legitimate SSID/BSSID to lure clients into connecting so the attacker can intercept traffic.
2. A SOC analyst receives an alert about an impossible travel event — a user logged in from New York and Tokyo within 30 minutes. What should be the FIRST response step?
The first step is to disable access to prevent potential ongoing compromise while verifying whether the activity was legitimate, such as VPN use.
3. Which vulnerability management metric tracks the average time from a patch being available to it being deployed?
Mean Time to Patch measures the speed of an organization's patching program, with shorter times reducing the exposure window for known vulnerabilities.
4. In a third-party risk management program, what document formally defines the security obligations of a vendor?
A BAA (required under HIPAA) or security addendum to a contract formally obligates vendors to meet specific security and data protection requirements.
5. Under HIPAA, what category of information must healthcare organizations protect?
HIPAA protects PHI — any individually identifiable health information held or transmitted by a covered entity or its business associates.
6. Which vulnerability management practice involves grouping systems by criticality and applying different patching SLAs to each group?
Risk-based patch prioritization assigns shorter remediation windows to critical systems and high-CVSS vulnerabilities while allowing more time for lower-risk assets.