1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1271:

    An incident response manager has started to gather all the facts related to a SIEM alert showing multiple systems may have been compromised.

    The manager has gathered these facts:

    The breach is currently indicated on six user PCs

    One service account is potentially compromised

    Executive management has been notified

    In which of the following phases of the IRP is the manager currently working?

    A. Recovery
    B. Eradication
    C. Containment
    D. Identification

  • Question 1272:

    A company is deploying a wireless network. It is a requirement that client devices must use X.509 certifications to mutually authenticate before connecting to the wireless network. Which of the following protocols would be required to accomplish this?

    A. EAP-TTLS
    B. EAP-MD5
    C. LEAP
    D. EAP-TLS
    E. EAP-TOTP

  • Question 1273:

    An active/passive configuration has an impact on:

    A. confidentiality
    B. integrity
    C. availability
    D. non-repudiation

  • Question 1274:

    Ann, a college professor, was recently reprimanded for posting disparaging remarks re-grading her coworkers on a web site. Ann stated that she was not aware that the public was able to view her remakes. Which of the following security-related trainings could have made Ann aware of the repercussions of her actions?

    A. Data Labeling and disposal
    B. Use of social networking
    C. Use of P2P networking
    D. Role-based training

  • Question 1275:

    A security analyst has identified malware that is propagating automatically to multiple systems on the network. Which of the following types of malware is MOST likely impacting the network?

    A. Virus
    B. Worm
    C. Logic bomb
    D. Backdoor

  • Question 1276:

    A bank is experiencing a DoS attack against an application designed to handle 500 IP-based sessions. in addition, the perimeter router can only handle 1Gbps of traffic. Which of the following should be implemented to prevent a DoS attacks in the future?

    A. Deploy multiple web servers and implement a load balancer
    B. Increase the capacity of the perimeter router to 10 Gbps
    C. Install a firewall at the network to prevent all attacks
    D. Use redundancy across all network devices and services

  • Question 1277:

    Which of the following security controls does an iris scanner provide?

    A. Logical
    B. Administrative
    C. Corrective
    D. Physical
    E. Detective
    F. Deterrent

  • Question 1278:

    An organization electronically processes sensitive data within a controlled facility. The Chief Information Security Officer (CISO) wants to limit emissions from emanating from the facility. Which of the following mitigates this risk?

    A. Upgrading facility cabling to a higher standard of protected cabling to reduce the likelihood of emission spillage
    B. Hardening the facility through the use of secure cabinetry to block emissions
    C. Hardening the facility with a Faraday cage to contain emissions produced from data processing
    D. Employing security guards to ensure unauthorized personnel remain outside of the facility

  • Question 1279:

    Joe a website administrator believes he owns the intellectual property for a company invention and has been replacing image files on the company's public facing website in the DMZ. Joe is using steganography to hide stolen dat

    A. Which of the following controls can be implemented to mitigate this type of inside threat?
    B. Digital signatures
    C. File integrity monitoring
    D. Access controls
    E. Change management
    F. Stateful inspection firewall

  • Question 1280:

    Company XYZ has decided to make use of a cloud-based service that requires mutual, certificate- based authentication with its users. The company uses SSL-inspecting IDS at its network boundary and is concerned about the confidentiality of the mutual authentication. Which of the following model prevents the IDS from capturing credentials used to authenticate users to the new service or keys to decrypt that communication?

    A. Use of OATH between the user and the service and attestation from the company domain
    B. Use of active directory federation between the company and the cloud-based service
    C. Use of smartcards that store x.509 keys, signed by a global CA
    D. Use of a third-party, SAML-based authentication service for attestation

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.