JK0-022 Exam Details

  • Exam Code
    :JK0-022
  • Exam Name
    :CompTIA Security+ Certification
  • Certification
    :CompTIA Security+
  • Vendor
    :CompTIA
  • Total Questions
    :1149 Q&As
  • Last Updated
    :Feb 05, 2025

CompTIA JK0-022 Online Questions & Answers

  • Question 1121:

    The IT department has setup a share point site to be used on the intranet. Security has established the groups and permissions on the site. No one may modify the permissions and all requests for access are centrally managed by the security team. This is an example of which of the following control types?

    A. Rule based access control
    B. Mandatory access control
    C. User assigned privilege
    D. Discretionary access control

  • Question 1122:

    Based on information leaked to industry websites, business management is concerned that unauthorized employees are accessing critical project information for a major, well-known new product. To identify any such users, the security administrator could:

    A. Set up a honeypot and place false project documentation on an unsecure share.
    B. Block access to the project documentation using a firewall.
    C. Increase antivirus coverage of the project servers.
    D. Apply security updates and harden the OS on all project servers.

  • Question 1123:

    DRAG DROP

    A security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center. Drag and drop the applicable controls to each asset type.

    Instructions: Controls can be used multiple times and not all placeholders need to be filled. When you have completed the simulation, please select the Done button to submit.

    Select and Place:

  • Question 1124:

    Multi-tenancy is a concept found in which of the following?

    A. Full disk encryption
    B. Removable media
    C. Cloud computing
    D. Data loss prevention

  • Question 1125:

    When designing a new network infrastructure, a security administrator requests that the intranet web server be placed in an isolated area of the network for security purposes. Which of the following design elements would be implemented to comply with the security administrator's request?

    A. DMZ
    B. Cloud services
    C. Virtualization
    D. Sandboxing

  • Question 1126:

    Which statement is TRUE about the operation of a packet sniffer?

    A. It can only have one interface on a management network.
    B. They are required for firewall operation and stateful inspection.
    C. The Ethernet card must be placed in promiscuous mode.
    D. It must be placed on a single virtual LAN interface.

  • Question 1127:

    Access mechanisms to data on encrypted USB hard drives must be implemented correctly otherwise:

    A. user accounts may be inadvertently locked out.
    B. data on the USB drive could be corrupted.
    C. data on the hard drive will be vulnerable to log analysis.
    D. the security controls on the USB drive can be bypassed.

  • Question 1128:

    Which of the following can be implemented in hardware or software to protect a web server from cross-site scripting attacks?

    A. Intrusion Detection System
    B. Flood Guard Protection
    C. Web Application Firewall
    D. URL Content Filter

  • Question 1129:

    Which of the following concepts defines the requirement for data availability?

    A. Authentication to RADIUS
    B. Non-repudiation of email messages
    C. Disaster recovery planning
    D. Encryption of email messages

  • Question 1130:

    An administrator has advised against the use of Bluetooth phones due to bluesnarfing concerns. Which of the following is an example of this threat?

    A. An attacker using the phone remotely for spoofing other phone numbers
    B. Unauthorized intrusions into the phone to access data
    C. The Bluetooth enabled phone causing signal interference with the network
    D. An attacker using exploits that allow the phone to be disabled

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JK0-022 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.