CompTIA SY0-601 Online Practice
Questions and Exam Preparation
SY0-601 Exam Details
Exam Code
:SY0-601
Exam Name
:CompTIA Security+
Certification
:CompTIA Certifications
Vendor
:CompTIA
Total Questions
:1334 Q&As
Last Updated
:Jul 15, 2026
CompTIA SY0-601 Online Questions &
Answers
Question 61:
A cybersecurity administrator has a reduced team and needs to operate an on-premises network and security infrastructure efficiently. To help with the situation, the administrator decides to hire a service provider. Which of the following should the administrator use?
A. SDP B. AAA C. IaaS D. MSSP E. Microservices
D. MSSP E. Microservices MSSP (Managed Security Service Provider) to efficiently operate the on-premises network and security infrastructure with a reduced team. An MSSP provides outsourced monitoring and management of security devices and systems By hiring an MSSP, the administrator can leverage their expertise and resources to handle security operations, such as managed firewall, intrusion detection, virtual private network, vulnerability scanning, and anti-viral services MSSPs can also provide specialized cybersecurity skills, such as cloud security, identity, or compliance knowledge, and help prevent breaches through automated incident response
Question 62:
A company is upgrading its wireless infrastructure to WPA2-Enterprise using EAP-TLS. Which of the following must be part of the security architecture to achieve AAA? (Select TWO)
A. DNSSEC B. Reverse proxy C. VPN concentrator D. PKI E. Active Directory F. RADIUS
D. PKI F. RADIUS Explanation Explanation/Reference:Developing a robust WPA2-Enterprise network requires additional tasks, like setting up a PKI or CA (Certificate Authority), to seamlessly distribute certificates to users. But contrary to what you might think, you can make any of these upgrades without buying new hardware or making changes to the infrastructure. For example, rolling out guest access or changing the authentication method can be accomplished without additional infrastructure. Recently, many institutions have been switching EAP methods from PEAP to EAP-TLS after seeing noticeable improvement in connection time and roaming ability or switching from a physical RADIUS server to a Cloud RADIUS solution. Improving the functionality of wireless networks can be gained without changing a single piece of hardware.
Question 63:
A systems administrator is considering different backup solutions for the IT infrastructure.
The company is looking for a solution that offers the fastest recovery time while also saving the most amount of storage used to maintain the backups.
Which of the following recovery solutions would be the BEST option to meet these requirements?
A. Snapshot B. Differentiated C. Full D. Tape
B. Differentiated A snapshot is not a back up. If your machine goes down so do the backups. Also microsoft might delete all your snapshots if you I/O is too high or the storage is low and they are saved on the same drive. Because it stakes "saving most amount of storage", I believe its B. Once you have the full back up, you would do differentials. If you did full backups daily, you will run out of storage soon. Tape is long recovery.
Question 64:
An accounting intern receives an invoice via email from the Chief Executive Officer (CEO). In the email, the CEO demands the immediate release of funds to the bank account that is listed. Which of the following principles best describes why this attack might be successful?
A. Authority B. Scarcity C. Consensus D. Familiarity
A. Authority
Question 65:
A new vulnerability in the SMB protocol on the Windows systems was recently discovered, but no patches are currently available to resolve the issue. The security administrator is concerned tf servers in the company's DMZ will be vulnerable to external attack; however, the administrator cannot disable the service on the servers, as SMB is used by a number of internal systems and applications on the LAN.
Which of the following TCP ports should be blocked for all external inbound connections to the DMZ as a workaround to protect the servers? (Select TWO).
A. 135 B. 139 C. 143 D. 161 E. 443 F. 445
B. 139 F. 445
Question 66:
A company just developed a new web application for a government agency. The application must be assessed and authorized prior to being deployed. Which of the following is required to assess the vulnerabilities resident in the application?
A. Repository transaction logs B. Common Vulnerabilities and Exposures C. Static code analysis D. Non-credentialed scans
C. Static code analysis Its a newly Developed application. no CVEs exist.
Question 67:
Which of the following terms should be included in a contract to help a company monitor the ongoing security maturity of a new vendor?
A. A right-to-audit clause allowing for annual security audits B. Requirements for event logs to be kept for a minimum of 30 days C. Integration of threat intelligence in the company's AV D. A data-breach clause requiring disclosure of significant data loss
A. A right-to-audit clause allowing for annual security audits Explanation Explanation/Reference:The right-to-audit clause in a contract would enable the company to perform annual security audits on the vendor. This clause gives the company the ability to monitor the ongoing security practices and maturity of the vendor. By conducting security audits, the company can assess the vendor's compliance with security requirements, identify potential security risks, and ensure that the vendor is implementing appropriate security measures. This is a common practice to maintain oversight and ensure security alignment between the company and its vendors.
Question 68:
Which of the following is the MOST relevant security check to be performed before embedding third-parry libraries in developed code?
A. Check to see if the third party has resources to create dedicated development and staging environments. B. Verify the number of companies that downloaded the third-party code and the number of contributions on the code repository. C. Assess existing vulnerabilities affecting the third-parry code and the remediation efficiency of the libraries' developers. D. Read multiple penetration-testing reports for environments running software that reused the library.
C. Assess existing vulnerabilities affecting the third-parry code and the remediation efficiency of the libraries' developers. Explanation Explanation/Reference:What to be done to best prevent issues in third-party code? Establish a baseline and process for every third-party software that is introduced into the organisation, including performing a risk assessment to establish the risk associated with implementing a certain piece of code.
Question 69:
A company needs to keep the fewest records possible, meet compliance needs, and ensure destruction of records that are no longer needed. Which of the following best describes the policy that meets these requirements?
A. Security policy B. Classification policy C. Retention policy D. Access control policy
C. Retention policy
Question 70:
A user downloaded an extension for a browser, and the user's device later became infected. The analyst who is investigating the incident saw various logs where the attacker was hiding activity by deleting data. The following was observed
running:
New-Partition -DiskNumber 2 -UseMaximumSize -AssignDriveLetter C| Format-Volume -DriveLetter C - FileSystemLabel "New"-FileSystem NTFS - Full -Force -Confirm:$false |
Which of the following is the malware using to execute the attack?
A. PowerShell B. Python C. Bash D. Macros
A. PowerShell Explanation Explanation/Reference:The code in question uses 'NTFS' which stands for New Technology File System that is used by Microsoft. Using the process of elimination, bash is used for Linux systems, and macros can be used by any scripting language, which leaves us Python and PowerShell. PowerShell uses capitals in each word throughout the code, python does not.
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only CompTIA exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your SY0-601 exam preparations
and CompTIA certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.