CompTIA Security+ Certification - SYO-501 Exam Practice Test
A security analyst is reviewing the following log:
Which of the following should the analyst report to the security manager?
Which of the following should the analyst report to the security manager?
Correct Answer: D
Vote an answer
A systems administrator is configuring a new network switch for TACACS+ management and authentication.
Which of the following must be configured to provide authentication between the switch and the TACACS+ server?
Which of the following must be configured to provide authentication between the switch and the TACACS+ server?
Correct Answer: D
Vote an answer
A company is deploying a wireless network. It is a requirement that client devices must use X.509 certifications to mutually authenticate before connecting to the wireless network. Which of the following protocols would be required to accomplish this?
Correct Answer: B
Vote an answer
A company wants to deploy PKI on its Internet-facing website. The applications that are currently deployed are:
* www company com (mam website)
* contactus company com (for locating a nearby location)
* quotes company com (for requesting a price quote)
The company wants to purchase one SSL certificate that will work for all the existing applications and any future applications that follow the same naming conventions, such as store company com. Which of the following certificate types would BEST meet the requirements?
* www company com (mam website)
* contactus company com (for locating a nearby location)
* quotes company com (for requesting a price quote)
The company wants to purchase one SSL certificate that will work for all the existing applications and any future applications that follow the same naming conventions, such as store company com. Which of the following certificate types would BEST meet the requirements?
Correct Answer: B
Vote an answer
The help desk received a call from a user who was trying to access a set of files from the day before but received the following error message: file format not recognized. Which of the following types of malware MOST likely caused this to occur?
Correct Answer: D
Vote an answer
Exercising various programming responses for the purpose of gaming insight into a system's security posture without exploiting the system is BEST described as.
Correct Answer: B
Vote an answer
A mobile application developer wants to secure an application that transmits sensitive information Which of the following should the developer implement to prevent SSL MITM attacks?
Correct Answer: A
Vote an answer
Which of the following agreement types is a non-contractual agreement between two or more parties and outlines each party's requirements and responsibilities?
Correct Answer: A
Vote an answer
A security auditor is reviewing the following output from file integrity monitoring software installed on a very busy server at a large service provider. The server has not been updates since it was installed. Drag and drop the log entry that identifies the first instance of server compromise.
Correct Answer:
A company is performing an analysis of the corporate enterprise network with the intent of identifying any one system, person, function, or service that, when neutralized, will cause or cascade disproportionate damage to the company's revenue, referrals, and reputation. Which of the following is an element of the BIA that this action is addressing?
Correct Answer: B
Vote an answer
Which of the following is a benefit of credentialed vulnerability scans?
Correct Answer: D
Vote an answer
Which of the following would MOST likely support the integrity of a voting machine?
Correct Answer: A
Vote an answer
In which of the following risk management strategies would cybersecurity insurance be used?
Correct Answer: C
Vote an answer
A computer forensics analyst collected a thumb drive that contained a single file with 500 pages of text To ensure the file maintains its confidentiality, which of the following should the analyst use?
Correct Answer: C
Vote an answer