A development team created a mobile application that contacts a company's back-end APIs housed in a PaaS environment. The APIs have been experiencing high processor utilization due to scraping activities. The security engineer needs to recommend a solution that will prevent and remedy the behavior.

Which of the following would BEST safeguard the APIs? (Choose two.)

1. Bot protection
2. OAuth 2.0
3. Input validation
4. Autoscaling endpoints
5. Rate limiting
6. CSRF protection

@E-Li need your suggestion here 

Clients are reporting slowness when attempting to access a series of load-balanced APIs that do not require authentication. The servers that host the APIs are showing heavy CPU utilization. No alerts are found on the WAFs sitting in front of the APIs.

Which of the following should a security engineer recommend to BEST remedy the performance issues in a timely manner?

Options:

A Implement rate limiting on the API.
B Implement geoblocking on the WAF.
C Implement OAuth 2.0 on the API.
D Implement input validation on the API.

A security engineer thinks the development team has been hard-coding sensitive environment variables in its code.

Which of the following would BEST secure the company's CI/CD pipeline?

Options:

A Utilizing a trusted secrets manager
B Performing DAST on a weekly basis
C Introducing the use of container orchestration
D Deploying instance tagging

An organization recently experienced a ransomware attack. The security team leader is concerned about the attack reoccurring. However, no further security measures have been implemented.

Which of the following processes can be used to identify potential prevention recommendations?

1. Detection
2. Remediation
3. Preparation
4. Recovery