1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 891:

    An organization's primary datacenter is experiencing a two-day outage due to an HVAC malfunction. The node located in the datacenter has lost power and is no longer operational, impacting the ability of all users to connect to the alternate datacenter. Which of the following BIA concepts BEST represents the risk described in this scenario?

    A. SPoF

    B. RTO

    C. MTBF

    D. MTTR

  • Question 892:

    A company's AUP requires:

    Passwords must meet complexity requirements.

    Passwords are changed at least once every six months.

    Passwords must be at least eight characters long.

    An auditor is reviewing the following report:

    Which of the following controls should the auditor recommend to enforce the AUP?

    A. Account lockout thresholds

    B. Account recovery

    C. Password expiration

    D. Prohibit password reuse

  • Question 893:

    After a routine audit, a company discovers that engineering documents have been leaving the network on a particular port. The company must allow outbound traffic on this port, as it has a legitimate business use. Blocking the port would cause an outage. Which of the following technology controls should the company implement?

    A. NAC

    B. Web proxy

    C. DLP

    D. ACL

  • Question 894:

    A security analyst has received the following alert snippet from the HIDS appliance:

    Given the above logs, which of the following is the cause of the attack?

    A. The TCP ports on destination are all open

    B. FIN, URG, and PSH flags are set in the packet header

    C. TCP MSS is configured improperly

    D. There is improper Layer 2 segmentation

  • Question 895:

    A security analyst reviews the following output:

    The analyst loads the hash into the SIEM to discover if this hash is seen in other parts of the network. After inspecting a large number of files, the security analyst reports the following:

    Which of the following is the MOST likely cause of the hash being found in other areas?

    A. Jan Smith is an insider threat

    B. There are MD5 hash collisions

    C. The file is encrypted

    D. Shadow copies are present

  • Question 896:

    An organization requires users to provide their fingerprints to access an application. To improve security, the application developers intend to implement multifactor authentication. Which of the following should be implemented?

    A. Use a camera for facial recognition

    B. Have users sign their name naturally

    C. Require a palm geometry scan

    D. Implement iris recognition

  • Question 897:

    A network technician is setting up a segmented network that will utilize a separate ISP to provide wireless access to the public area for a company. Which of the following wireless security methods should the technician implement to provide basic accountability for access to the public network?

    A. Pre-shared key

    B. Enterprise

    C. Wi-Fi Protected setup

    D. Captive portal

  • Question 898:

    A user is presented with the following items during the new-hire onboarding process: -Laptop -Secure USB drive -Hardware OTP token -External high-capacity HDD -Password complexity policy -Acceptable use policy -HASP key -Cable lock Which of the following is one component of multifactor authentication?

    A. Secure USB drive

    B. Cable lock

    C. Hardware OTP token

    D. HASP key

  • Question 899:

    An organization is comparing and contrasting migration from its standard desktop configuration to the newest version of the platform. Before this can happen, the Chief Information Security Officer (CISO) voices the need to evaluate the functionality of the newer desktop platform to ensure interoperability with existing software in use by the organization. In which of the following principles of architecture and design is the CISO engaging?

    A. Dynamic analysis

    B. Change management

    C. Baselining

    D. Waterfalling

  • Question 900:

    A security administrator suspects a MITM attack aimed at impersonating the default gateway is underway. Which of the following tools should the administrator use to detect this attack? (Select two.)

    A. Ping

    B. Ipconfig

    C. Tracert

    D. Netstat

    E. Dig

    F. Nslookup

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.