1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 641:

    A systems administrator recently issued a public/private key pair that will be used tor the company's DNSSEC implementation. Which of the following configurations should the systems administrator implement NEXT?

    A. Create DNSKEY resources with the public key.
    B. instant private key using the RRSIG record
    C. Point the OS record to the company authoritative servers
    D. Add TCP port 443 to the DNS listener

  • Question 642:

    A security analyst needs to be proactive in understanding the types of attacks that could potentially target the company's executives. Which of the following intelligence sources should the security analyst review?

    A. Vulnerability feeds
    B. Trusted automated exchange of indicator Information
    C. Structured threat information expression
    D. Industry Information-sharing and collaboration groups

  • Question 643:

    A security analyst is performing a BIA. The analyst notes that in a disaster, failover systems must be up and running within 30 minutes. The failover systems must use backup data that is no older than one hour. Which of the following should the analyst include in the business continuity plan?

    A. A maximum MTTR of 30 minutes
    B. A maximum MTBF of 30 minutes
    C. A maximum RTO of 60 minutes
    D. A maximum RPO of 60 minutes
    E. An SLA guarantee of 60 minutes

  • Question 644:

    An organization wishes to allow its users to select devices for business use but does not want to overwhelm the service desk with requests for too many different device types and models. Which of the following deployment models should the organization use to BEST meet these requirements?

    A. VDI environment
    B. CYOD model
    C. DAC model
    D. BYOD model

  • Question 645:

    A security analyst believes an employee's workstation has been compromised. The analyst reviews the system logs, but does not find any attempted logins. The analyst then runs the diff command, comparing the C:\Windows\System32

    directory and the installed cache directory. The analyst finds a series of files that look suspicious.

    One of the files contains the following commands:

    Which of the following types of malware was used?

    A. Worm
    B. Spyware
    C. Logic bomb
    D. Backdoor

  • Question 646:

    A forensics analyst is investigating a hard drive for evidence of suspected illegal activity. Which of the following should the analyst do FIRST?

    A. Create a hash of the hard drive.
    B. Export the Internet history.
    C. Save a copy of the case number and date as a text file in the root directory.
    D. Back up the pictures directory for further inspection.

  • Question 647:

    A development team has adopted a new approach to projects in which feedback is iterative and multiple iterations of deployments are provided within an application's full life cycle. Which of the following software development methodologies is the development team using?

    A. Waterfall
    B. Agile
    C. Rapid
    D. Extreme

  • Question 648:

    A small- to medium-sized company wants to block the use of USB devices on its network. Which of the following is the MOST cost-effective way for the security analyst to prevent this?

    A. Implement a DLP system
    B. Apply a GPO
    C. Conduct user awareness training
    D. Enforce the AUP.

  • Question 649:

    After segmenting the network, the network manager wants to control the traffic between the segments. Which of the following should the manager use to control the network traffic?

    A. A DMZ
    B. A VPN
    C. A VLAN
    D. An ACL

  • Question 650:

    An external auditor visits the human resources department and performs a physical security assessment. The auditor observed documents on printers that are unclaimed. A closer look at these documents reveals employee names, addresses, ages, and types of medical and dental coverage options each employee has selected. Which of the following is the MOST appropriate actions to take?

    A. Flip the documents face down so no one knows these documents are PII sensitive
    B. Shred the documents and let the owner print the new set
    C. Retrieve the documents, label them with a PII cover sheet, and return them to the printer
    D. Report to the human resources manager that their personnel are violating a privacy policy

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.