1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 621:

    A security administrator wishes to implement a secure a method of file transfer when communicating with outside organizations. Which of the following protocols would BEST facilitate secure file transfers? (Select TWO)

    A. SCP

    B. TFTP

    C. SNMP

    D. FTP

    E. SMTP

    F. FTPS

  • Question 622:

    A technician needs to implement a system which will properly authenticate users by their username and password only when the users are logging in from a computer in the office building. Any attempt to authenticate from a location other than the office building should be rejected. Which of the following MUST the technician implement?

    A. Dual factor authentication

    B. Transitive authentication

    C. Single factor authentication

    D. Biometric authentication

  • Question 623:

    After correctly configuring a new wireless enabled thermostat to control the temperature of the company's meeting room, Joe, a network administrator determines that the thermostat is not connecting to the internetbased control system. Joe verifies that the thermostat received the expected network parameters and it is associated with the AP. Additionally, the other wireless mobile devices connected to the same wireless network are functioning properly. The network administrator verified that the thermostat works when tested at his residence. Which of the following is the MOST likely reason the thermostat is not connecting to the internet?

    A. The company implements a captive portal

    B. The thermostat is using the incorrect encryption algorithm

    C. the WPA2 shared likely is incorrect

    D. The company's DHCP server scope is full

  • Question 624:

    A security administrator wants to implement a company-wide policy to empower data owners to manage and enforce access control rules on various resources. Which of the following should be implemented?

    A. Mandatory access control

    B. Discretionary access control

    C. Role based access control

    D. Rule-based access control

  • Question 625:

    Which of the following BEST describes an attack where communications between two parties are intercepted and forwarded to each party with neither party being aware of the interception and potential modification to the communications?

    A. Spear phishing

    B. Main-in-the-middle

    C. URL hijacking

    D. Transitive access

  • Question 626:

    An organization is working with a cloud services provider to transition critical business applications to a hybrid cloud environment. The organization retains sensitive customer data and wants to ensure the provider has sufficient administrative and logical controls in place to protect its dat

    A. In which of the following documents would this concern MOST likely be addressed?

    B. Service level agreement

    C. Interconnection security agreement

    D. Non-disclosure agreement

    E. Business process analysis

  • Question 627:

    During a recent audit, it was discovered that several user accounts belonging to former employees were still active and had valid VPN permissions. Which of the following would help reduce the amount of risk the organization incurs in this situation in the future?

    A. Time-of-day restrictions

    B. User access reviews

    C. Group-based privileges

    D. Change management policies

  • Question 628:

    Having adequate lighting on the outside of a building is an example of which of the following security controls?

    A. Deterrent

    B. Compensating

    C. Detective

    D. Preventative

  • Question 629:

    A security administrator needs to implement a system that detects possible intrusions based upon a vendor provided list. Which of the following BEST describes this type of IDS?

    A. Signature based

    B. Heuristic

    C. Anomaly-based

    D. Behavior-based

  • Question 630:

    The chief Security Officer (CSO) has reported a rise in data loss but no break ins have occurred. By doing which of the following is the CSO most likely to reduce the number of incidents?

    A. Implement protected distribution

    B. Empty additional firewalls

    C. Conduct security awareness training

    D. Install perimeter barricades

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.