CompTIA CompTIA Certifications SY0-601 Questions & Answers

• Question 561:

  Which of the following types of controls is a CCTV camera that is not being monitored?

  A. Detective

  B. Deterrent

  C. Physical

  D. Preventive

  Correct Answer: B

  Security Guards and Cameras in Lesson 21: Explaining Physical Security | Topic 21A.. "CCTV (closed circuit television) is a cheaper means of providing surveillance than maintaining separate guards at each gateway or zone, though still not cheap to set up if the infrastructure is not already in place on the premises. It is also quite an effective deterrent." and the "Review Activity: Physical Site Security Controls" 1. What physical site security controls act as deterrents? Lighting is one of the most effective deterrents. Any highly visible security control (guards, fences, dogs, barricades, CCTV, signage, and so on) will act as a deterrent

• Question 562:

  A network technician is installing a guest wireless network at a coffee shop. When a customer purchases an Item, the password for the wireless network is printed on the recent so the customer can log in.

  Which of the following will the technician MOST likely configure to provide the highest level of security with the least amount of overhead?

  A. WPA-EAP

  B. WEP-TKIP

  C. WPA-PSK

  D. WPS-PIN

  Correct Answer: C

  (WPA-EAP) requiring a RADIUS server for authentication. This might be overkill for a coffee shop's guest network and could introduce more overhead than necessary.

• Question 563:

  A security engineer at an offline government facility is concerned about the validity of an SSL certificate. The engineer wants to perform the fastest check with the least delay to determine if the certificate has been revoked.

  Which of the following would BEST these requirement?

  A. RA

  B. OCSP

  C. CRL

  D. CSR

  Correct Answer: C

  OCSP (Online Certificate Status Protocol) needs to send a request to obtain the status of the certificate. Because the site is offline, a CRL would BEST meet the requirements.

• Question 564:

  A Chief Information Security Officer (CISO) needs to create a policy set that meets international standards for data privacy and sharing. Which of the following should the CISO read and understand before writing the policies?

  A. PCI DSS

  B. GDPR

  C. NIST

  D. ISO 31000

  Correct Answer: B

  General Data Protection Regulation (GDPR) is a set of rules in the European Union. These rules specify that if data is collected on EU citizens, the data must be stored in the European Union.

• Question 565:

  An engineer wants to access sensitive data from a corporate-owned mobile device. Personal data is not allowed on the device. Which of the following MDM configurations must be considered when the engineer travels for business?

  A. Screen locks

  B. Application management

  C. Geofencing

  D. Containerization

  Correct Answer: A

  " access sensitive data from a corporate-owned mobile device" screen locks is MORE important that geofencing in this case..

• Question 566:

  A security analyst is preparing a threat for an upcoming internal penetration test. The analyst needs to identify a method for determining the tactics, techniques, and procedures of a threat against the organization's network. Which of the following will the analyst MOST likely use to accomplish the objective?

  A. A table exercise

  B. NST CSF

  C. MTRE ATT$CK

  D. OWASP

  Correct Answer: C

  MITRE ATTandCK can be used to classify attacks.

• Question 567:

  Two hospitals merged into a single organization. The privacy officer requested a review of ait records to ensure encryption was used Guring record storage, in compliance with regulations.

  During the review, the officer discovered that medical diagnosis codes and patient names were left unsecured.

  Which of the following types of data does this combination BEST represent?

  A. Personal heath information

  B. Personally Kentifiable information

  C. Tokenized data

  D. Proprietary data

  Correct Answer: A

  Protected health information PHI is a subset of PII, but it specifically refers to health information shared with HIPAA covered entities. Medical records, lab reports, and hospital bills are PHI, along with any information relating to an individual's past, present, or future physical or mental health.

• Question 568:

  Which of the following technical controls is BEST suited for the detection and prevention of buffer overflows on hosts?

  A. DLP

  B. HIDS

  C. EDR

  D. NIPS

  Correct Answer: C

  Endpoint detection and response (EDR) platforms are solutions that monitor endpoints (computers on the network, not the network itself) for suspicious activity. EDR solutions can help monitor and protect against Advanced Persistent Threats (APT), which often use malware-free hacking techniques and security vulnerabilities to gain access to a network. Older anti-virus software is able to detect malware only when there is a matching signature, and is unable to determine that an attacker has access to a computer just by monitoring their activity. Endpoint security is not just an enterprise tool: there are consumer versions of EDR out there these days as well.

• Question 569:

  Which of the following control types would be BEST to use to identify violations and incidents?

  A. Detective

  B. Compensating

  C. Deterrent

  D. Corrective

  E. Recovery

  F. Preventive

  Correct Answer: A

• Question 570:

  In which of the following risk management strategies would cybersecurity insurance be used?

  A. Transference

  B. Avoidance

  C. Acceptance

  D. Mitigation

  Correct Answer: A

  Anything that talks about a company needing insurance will almost always be risk Transference.