1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1141:

    The Chief Information Security Officer (CISO) in a company is working to maximize protection efforts of sensitive corporate data. The CISO implements a "100% shred" policy within the organization, with the intent to destroy any documentation that is not actively in use in a way that it cannot be recovered or reassembled. Which of the following attacks is this deterrent MOST likely to mitigate?

    A. Dumpster diving
    B. Whaling
    C. Shoulder surfing
    D. Vishing

  • Question 1142:

    DRAG DROP

    Leveraging the information supplied below, complete the CSR for the server to set up TLS (HTTPS)

    1. Hostname: ws01

    2. Domain: comptia.org

    3. IPv4: 10.1.9.50

    4. IPV4: 10.2.10.50

    5. Root: home.aspx

    6. DNS CNAME:homesite.

    Instructions:

    Drag the various data points to the correct locations within the CSR. Extension criteria belong in the let hand column and values belong in the corresponding row in the right hand column.

    Select and Place:

  • Question 1143:

    A technician is designing a solution that will be required to process sensitive information, including classified government data. The system needs to be common criteria certified. Which of the following should the technician select?

    A. Security baseline
    B. Hybrid cloud solution
    C. Open-source software applications
    D. Trusted operating system

  • Question 1144:

    Due to regulatory requirements, a security analyst must implement full drive encryption on a Windows file server. Which of the following should the analyst implement on the system to BEST meet this requirement? (Choose two.)

    A. Enable and configure EFS on the file system.
    B. Ensure the hardware supports TPM, and enable it in the BIOS.
    C. Ensure the hardware supports VT-X, and enable it in the BIOS.
    D. Enable and configure BitLocker on the drives.
    E. Enable and configure DFS across the file system.

  • Question 1145:

    An audit found that an organization needs to implement job rotation to be compliant with regulatory requirements. To prevent unauthorized access to systems after an individual changes roles or departments, which of the following should the organization implement?

    A. Permission auditing and review
    B. Exit interviews
    C. Offboarding
    D. Multifactor authentication

  • Question 1146:

    A member of a digital forensics team, Joe arrives at a crime scene and is preparing to collect system dat

    A. Before powering the system off, Joe knows that he must collect the most volatile date first. Which
    B. CPU cache, paging/swap files, RAM, remote logging data
    C. RAM, CPU cache. Remote logging data, paging/swap files
    D. Paging/swap files, CPU cache, RAM, remote logging data
    E. CPU cache, RAM, paging/swap files, remote logging data

  • Question 1147:

    Which of the following describes the BEST approach for deploying application patches?

    A. Apply the patches to systems in a testing environment, then to systems in a staging environment, and finally to production systems.
    B. Test the patches in a staging environment, develop against them in the development environment, and then apply them to the production systems
    C. Test the patches in a test environment, apply them to the production systems, and then apply them to a staging environment.
    D. Apply the patches to the production systems, apply them in a staging environment, and then test all of them in a testing environment.

  • Question 1148:

    The IT department needs to prevent users from installing untested applications. Which of the following would provide the BEST solution?

    A. Job rotation
    B. Least privilege
    C. Account lockout
    D. Antivirus

  • Question 1149:

    A company is looking for an all-in-one solution to provide identification, authentication, authorization, and accounting services. Which of the following technologies should the company use?

    A. Diameter
    B. SAML
    C. Kerberos
    D. CHAP

  • Question 1150:

    A systems analyst is responsible for generating a new digital forensics chain-of-custody form. Which of the following should the analyst include in this documentation? (Select TWO)

    A. The order of volatility
    B. A checksum
    C. The location of the artifacts
    D. The vendor's name
    E. The date and time
    F. A warning banner

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.