1. Home
  2. CompTIA
  3. SY0-601

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-601
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1334 Q&As
  • Last Updated
    :May 09, 2025

CompTIA CompTIA Certifications SY0-601 Questions & Answers

  • Question 1101:

    An information security manager for an organization is completing a PCI DSS self- assessment for the first time. which of the is following MOST likely reason for this type of assessment?

    A. An international expansion project is currently underway.

    B. Outside consultants utilize this tool to measure security maturity.

    C. The organization is expecting to process credit card information.

    D. A government regulator has requested this audit to be completed

  • Question 1102:

    A store receives reports that shoppers' credit card information is being stolen. Upon further analysis, those same shoppers also withdrew money from an ATM in that store.

    The attackers are using the targeted shoppers' credit card information to make online purchases.

    Which of the following attacks is the MOST probable cause?

    A. Identity theft

    B. RFID cloning

    C. Shoulder surfing

    D. Card skimming

  • Question 1103:

    A company acquired several other small companies The company thai acquired the others is transitioning network services to the cloud The company wants to make sure that performance and security remain intact Which of the following BEST meets both requirements?

    A. High availability

    B. Application security

    C. Segmentation

    D. Integration and auditing

  • Question 1104:

    A security architect is implementing a new email architecture for a company. Due to security concerns, the Chief Information Security Officer would like the new architecture to support email encryption, as well as provide for digital signatures. Which of the following should the architect implement?

    A. TOP

    B. IMAP

    C. HTTPS D. S/MIME

  • Question 1105:

    As part of the building process for a web application, the compliance team requires that all PKI certificates are rotated annually and can only contain wildcards at the secondary subdomain level. Which of the following certificate properties will meet these requirements?

    A. HTTPS://.comptia.org, Valid from April 10 00:00:00 2021 - April 8 12:00:00 2022

    B. HTTPS://app1.comptia.org, Valid from April 10 00:00:00 2021-April 8 12:00:00 2022

    C. HTTPS:// app1.comptia.org, Valid from April 10 00:00:00 2021-April 8 12:00:00 2022

    D. HTTPS://.comptia.org, Valid from April 10 00:00:00 2021 - April 8 12:00:00

  • Question 1106:

    Which of the following provides a catalog of security and privacy controls related to the United States federal information systems?

    A. GDPR

    B. PCI DSS

    C. ISO 27000

    D. NIST 800-53

  • Question 1107:

    A security administrator wants to implement a program that tests a user's ability to recognize attacks over the organization's email system

    Which of the following would be BEST suited for this task?

    A. Social media analysis

    B. Annual information security training

    C. Gamification

    D. Phishing campaign

  • Question 1108:

    Which of the following authentication methods sends out a unique password to be used within a specific number of seconds?

    A. TOTP

    B. Biometrics

    C. Kerberos

    D. LDAP

  • Question 1109:

    A grocery store is expressing security and reliability concerns regarding the on-site backup strategy currently being performed by locally attached disks. The main concerns are the physical security of the backup media and the durability of the data stored on these devices

    Which of the following is a cost-effective approach to address these concerns?

    A. Enhance resiliency by adding a hardware RAID.

    B. Move data to a tape library and store the tapes off-site

    C. Install a local network-attached storage.

    D. Migrate to a cloud backup solution

  • Question 1110:

    A company Is planning to install a guest wireless network so visitors will be able to access the Internet. The stakeholders want the network to be easy to connect to so time is not wasted during meetings. The WAPs are configured so that power levels and antennas cover only the conference rooms where visitors will attend meetings. Which of the following would BEST protect the company's Internal wireless network against visitors accessing company resources?

    A. Configure the guest wireless network to be on a separate VLAN from the company's internal wireless network

    B. Change the password for the guest wireless network every month.

    C. Decrease the power levels of the access points for the guest wireless network.

    D. Enable WPA2 using 802.1X for logging on to the guest wireless network.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-601 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.