CompTIA SY0-501 Online Practice Questions and Exam Preparation

CompTIA SY0-501 Online Questions & Answers

• Question 211:

  A Chief Information Security Officer (CISO) is performing a BIA for the organization in case of a natural disaster. Which of the following should be at the top of the CISO's list?

  A. Identify redundant and high-availability systems.
  B. Identity mission-critical applications and systems.
  C. Identify the single point of failure in the system.
  D. Identity the impact on safety of the property.
  B. Identity mission-critical applications and systems.

• Question 212:

  A company needs to fix some audit findings related to its physical security. A key finding was that multiple people could physically enter a location at the same time. Which of the following is the BEST control to address this audit finding?

  A. Faraday cage
  B. Mantrap
  C. Biometrics
  D. Proximity cards
  B. Mantrap

• Question 213:

  A security analyst has received the following alert snippet from the HIDS appliance: Given the above logs, which of the following is the cause of the attack?

  

  A. The TCP ports on destination are all open
  B. FIN, URG, and PSH flags are set in the packet header
  C. TCP MSS is configured improperly
  D. There is improper Layer 2 segmentation
  B. FIN, URG, and PSH flags are set in the packet header

• Question 214:

  A security administrator wishes to implement a secure a method of file transfer when communicating with outside organizations. Which of the following protocols would BEST facilitate secure file transfers? (Select TWO)

  A. SCP
  B. TFTP
  C. SNMP
  D. FTP
  E. SMTP
  F. FTPS
  A. SCP
  F. FTPS

• Question 215:

  Which of the following involves the use of targeted and highly crafted custom attacks against a population of users who may have access to a particular service or program?

  A. Hoaxing
  B. Spear phishing
  C. Vishing
  D. Phishing
  A. Hoaxing

• Question 216:

  A systems administrator is auditing the company's Active Directory environment. It is quickly noted that the username "company\bsmith" is interactively logged into several desktops across the organization. Which of the following has the systems administrator MOST likely come across?

  A. Service account
  B. Shared credentials
  C. False positive
  D. Local account
  B. Shared credentials

• Question 217:

  A security analyst receives a notification from the IDS after working hours, indicating a spike in network traffic. Which of the following BEST describes this type of IDS?

  A. Anomaly-based
  B. Stateful
  C. Host-based
  D. Signature-based
  A. Anomaly-based

• Question 218:

  A company is executing a strategy to encrypt and sign all proprietary data in transit. The company recently deployed PKI services to support this strategy. Which of the following protocols supports the strategy and employs certificates generated by the PKI? (Choose three.)

  A. S/MIME
  B. TLS
  C. SFTP
  D. SAML
  E. SIP
  F. IPSec
  G. Kerberos
  A. S/MIME
  B. TLS
  C. SFTP

• Question 219:

  A security administrator has been tasked with improving the overall security posture related to desktop machines on the network. An auditor has recently that several machines with confidential customer information displayed in the screens are left unattended during the course of the day. Which of the following could the security administrator implement to reduce the risk associated with the finding?

  A. Implement a clean desk policy
  B. Security training to prevent shoulder surfing
  C. Enable group policy based screensaver timeouts
  D. Install privacy screens on monitors
  C. Enable group policy based screensaver timeouts

• Question 220:

  Moving laterally within a network once an initial exploit is used to gain persistent access for the purpose of establishing further control of a system is known as:

  A. pivoting.
  B. persistence.
  C. active reconnaissance.
  D. a backdoor.
  C. active reconnaissance.