1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 1201:

    An attachment that was emailed to finance employees contained an embedded message. The security administrator investigates and finds the intent was to conceal the embedded information from public view. Which of the following BEST describes this type of message?

    A. Obfuscation

    B. Stenography

    C. Diffusion

    D. BCRYPT

  • Question 1202:

    When considering IoT systems, which of the following represents the GREATEST ongoing risk after a vulnerability has been discovered?

    A. Difficult-to-update firmware

    B. Tight integration to existing systems

    C. IP address exhaustion

    D. Not using industry standards

  • Question 1203:

    A systems administrator has been assigned to create accounts for summer interns. The interns are only authorized to be in the facility and operate computers under close supervision. They must also leave the facility at designated times each day. However, the interns can access intern file folders without supervision.

    Which of the following represents the BEST way to configure the accounts? (Select TWO.)

    A. Implement time-of-day restrictions.

    B. Modify archived data.

    C. Access executive shared portals.

    D. Create privileged accounts.

    E. Enforce least privilege.

  • Question 1204:

    A company hired a firm to test the security posture of its database servers and determine if any vulnerabilities can be exploited. The company provided limited imformation pertaining to the infrastructure and database server.

    Which of the following forms of testing does this BEST describe?

    A. Black box

    B. Gray box

    C. White box

    D. Vulnerability scanning

  • Question 1205:

    An organization wants to implement a method to correct risks at the system/application layer. Which of the following is the BEST method to accomplish this goal?

    A. IDS/IPS

    B. IP tunneling

    C. Web application firewall

    D. Patch management

  • Question 1206:

    A company recently updated its website to increase sales. The new website uses PHP forms for leads and provides a directory with sales staff and their phone numbers. A systems administrator is concerned with the new website and provides the following log to support the concern:

    Which of the following is the systems administrator MOST likely to suggest to the Chief Information Security Officer (CISO) based on the above?

    A. Changing the account standard naming convention

    B. Implementing account lockouts

    C. Discontinuing the use of privileged accounts

    D. Increasing the minimum password length from eight to ten characters

  • Question 1207:

    A company has purchased a new SaaS application and is in the process of configuring it to meet the company's needs. The director of security has requested that the SaaS application be integrated into the company's IAM processes.

    Which of the following configurations should the security administrator set up in order to complete this request?

    A. LDAP

    B. RADIUS

    C. SAML

    D. NTLM

  • Question 1208:

    A company needs to implement a system that only lets a visitor use the company's network infrastructure if the visitor acceps the AUP. Which of the following should the company use?

    A. WiFi-protected setup

    B. Password authentication protocol

    C. Captive portal

    D. RADIUS

  • Question 1209:

    An analyst is currently looking at the following output:

    Which of the following security issues has been discovered based on the output?

    A. Insider threat

    B. License compliance violation

    C. Unauthorized software

    D. Misconfigured admin permissions

  • Question 1210:

    During a recent audit, several undocumented and unpatched devices were discovered on the internal network. Which of the following can be done to prevent similar occurrences?

    A. Run weekly vulnerability scans and remediate any missing patches on all company devices

    B. Implement rogue system detection and configure automated alerts for new devices

    C. Install DLP controls and prevent the use of USB drives on devices

    D. Configure the WAPs to use NAC and refuse connections that do not pass the health check

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.