1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 511:

    A network engineer has been asked to investigate why several wireless barcode scanners and wireless computers in a warehouse have intermittent connectivity to the shipping server. The barcode scanners and computers are all on forklift trucks and move around the warehouse during their regular use.

    Which of the following should the engineer do to determine the issue? (Select Two)

    A. Perform a site survey.

    B. Deploy an FTK Imager.

    C. Create a heat map.

    D. Scan for rogue access points.

    E. Upgrade the security protocols.

    F. Install a captive portal

  • Question 512:

    Which of the following are the MOST likely vectors for the unauthorized or unintentional inclusion of vulnerable code in a software company's final software releases? (Select TWO)

    A. Unsecure protocols

    B. Use of penetration-testing utilities

    C. Weak passwords

    D. included third-party libraries

    E. Vendors/supply chain

    F. Outdated anti-malware software

  • Question 513:

    To reduce costs and overhead, an organization wants to move from an on-premises email solution to a cloud-based email solution. At this time, no other services will be moving. Which of the following cloud models would BEST meet the needs of the organization?

    A. MaaS

    B. IaaS

    C. SaaS

    D. PaaS

  • Question 514:

    A security engineer needs to build a solution to satisfy regulatory requirements that state certain critical server must be accessed using MFA. However, the critical servers are older and are unable to support the addition of MFA. Which of the following will the engineer MOST likely use to achieve this objective?

    A. A forward proxy

    B. A stateful firewall

    C. A jump server

    D. A port tap

  • Question 515:

    A financial analyst is expecting an email containing sensitive information from a client. When the email arrives, the analyst receives an error and is unable to open the encrypted message. Which of the following is the MOST likely cause of the issue?

    A. The S/MIME plug-in is not enabled

    B. The SSL certificate has expired

    C. Secure IMAP was not implemented

    D. POP3S is not supported

  • Question 516:

    An organization just experienced a major cyberattack incident. The attack was well coordinated, sophisticated, and highly skilled. Which of the following targeted the organization?

    A. Shadow IT

    B. An insider threat

    C. A hacktivist

    D. An advanced persistent threat

  • Question 517:

    An organization has a policy in place that states the person who approves firewall controls/changes cannot be the one implementing the changes. Which of the following is this an example of?

    A. Change management

    B. Job rotation

    C. Separation of duties

    D. Least privilege

  • Question 518:

    During an incident, a company's CIRT determines it is necessary to observe the continued network-based transactions between a callback domain and the malware running on an enterprise PC. Which of the following techniques would be BEST to enable this activity while reducing the risk of lateral spread and the risk that the adversary would notice any changes?

    A. Physically move the PC to a separate Internet point of presence.

    B. Create and apply microsegmentation rules.

    C. Emulate the malware in a heavily monitored DMZ segment.

    D. Apply network blacklisting rules for the adversary domain.

  • Question 519:

    An organization recently acquired an ISO 27001 certification. Which of the following would MOST likely be considered a benefit of this certification?

    A. It allows for the sharing of digital forensics data across organizations.

    B. It provides insurance in case of a data breach.

    C. It provides complimentary training and certification resources to IT security staff.

    D. It certifies the organization can work with foreign entities that require a security clearance.

    E. It assures customers that the organization meets security standards.

  • Question 520:

    When implementing automation with IoT devices, which of the following should be considered FIRST to keep the network secure?

    A. Z-Wave compatibility

    B. Network range

    C. Zigbee configuration

    D. Communication protocols

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.