SY0-601 Exam Details

  • Exam Code
    :SY0-601
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1334 Q&As
  • Last Updated
    :

CompTIA SY0-601 Online Questions & Answers

  • Question 1:

    A security analyst discovers that a company's username and password database was posted on an Internet forum. The username and passwords are stored in plain text. Which of the following would mitigate the damage done by this type of data exfiltration in the future?

    A. Create DLP controls that prevent documents from leaving the network
    B. Implement salting and hashing
    C. Configure the web content filter to block access to the forum.
    D. Increase password complexity requirements

  • Question 2:

    A security analyst needs to be able to search and correlate logs from multiple sources in a single tool

    Which of the following would BEST allow a security analyst to have this ability?

    A. SOAR
    B. SIEM
    C. Log collectors
    D. Network-attached storage

  • Question 3:

    An organization is building a single virtual environment that will host customer applications and data that require availability at all times. The data center that is hosting the environment will provide generator power and ISP services. Which of the following is the best solution to support the organization's requirement?

    A. NIC teaming
    B. Cloud backups
    C. A load balancer appliance
    D. UPS

  • Question 4:

    A security analyst is responding to an alert from the SIEM. The alert states that malware was discovered on a host and was not automatically deleted. Which of the following would be BEST for the analyst to perform?

    A. Add a deny-all rule to that host in the network ACL
    B. Implement a network-wide scan for other instances of the malware.
    C. Quarantine the host from other parts of the network
    D. Revoke the client's network access certificates

  • Question 5:

    A database administrator needs to ensure all passwords are stored in a secure manner, so the administrate adds randomly generated data to each password before string. Which of the following techniques BEST explains this action?

    A. Predictability
    B. Key stretching
    C. Salting
    D. Hashing

  • Question 6:

    A company has decided to move its operations to the cloud. It wants to utilize technology that will prevent users from downloading company applications for personal use, restrict data that is uploaded, and have visibility into which applications are being used across the company.

    Which of the following solutions will BEST meet these requirements?

    A. An NGFW
    B. A CASB
    C. Application whitelisting
    D. An NG-SWG

  • Question 7:

    A bad actor tries to persuade someone to provide financial information over the phone in order to gain access to funds. Which of the following types of attacks does this scenario describe?

    A. Vishing
    B. Phishing
    C. Spear phishing
    D. Whaling

  • Question 8:

    A company is concerned about individuals driving a car into the building to gain access. Which of the following security controls would work BEST to prevent this from happening?

    A. Bollard
    B. Camera
    C. Alarms
    D. Signage
    E. Access control vestibule

  • Question 9:

    Which of the following identifies the point in time when an organization will recover data in the event of an outage?

    A. ALE
    B. RPO
    C. MTBF
    D. ARO

  • Question 10:

    A systems administrator needs to install the same X.509 certificate on multiple servers. Which of the following should the administrator use?

    A. Key escrow
    B. A self-signed certificate
    C. Certificate chaining
    D. An extended validation certificate

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-601 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.