SY0-601 Exam Details

  • Exam Code
    :SY0-601
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1334 Q&As
  • Last Updated
    :Jul 15, 2026

CompTIA SY0-601 Online Questions & Answers

  • Question 61:

    A cybersecurity administrator has a reduced team and needs to operate an on-premises network and security infrastructure efficiently. To help with the situation, the administrator decides to hire a service provider. Which of the following should the administrator use?

    A. SDP
    B. AAA
    C. IaaS
    D. MSSP
    E. Microservices

  • Question 62:

    A company is upgrading its wireless infrastructure to WPA2-Enterprise using EAP-TLS. Which of the following must be part of the security architecture to achieve AAA? (Select TWO)

    A. DNSSEC
    B. Reverse proxy
    C. VPN concentrator
    D. PKI
    E. Active Directory
    F. RADIUS

  • Question 63:

    A systems administrator is considering different backup solutions for the IT infrastructure.

    The company is looking for a solution that offers the fastest recovery time while also saving the most amount of storage used to maintain the backups.

    Which of the following recovery solutions would be the BEST option to meet these requirements?

    A. Snapshot
    B. Differentiated
    C. Full
    D. Tape

  • Question 64:

    An accounting intern receives an invoice via email from the Chief Executive Officer (CEO). In the email, the CEO demands the immediate release of funds to the bank account that is listed. Which of the following principles best describes why this attack might be successful?

    A. Authority
    B. Scarcity
    C. Consensus
    D. Familiarity

  • Question 65:

    A new vulnerability in the SMB protocol on the Windows systems was recently discovered, but no patches are currently available to resolve the issue. The security administrator is concerned tf servers in the company's DMZ will be vulnerable to external attack; however, the administrator cannot disable the service on the servers, as SMB is used by a number of internal systems and applications on the LAN.

    Which of the following TCP ports should be blocked for all external inbound connections to the DMZ as a workaround to protect the servers? (Select TWO).

    A. 135
    B. 139
    C. 143
    D. 161
    E. 443
    F. 445

  • Question 66:

    A company just developed a new web application for a government agency. The application must be assessed and authorized prior to being deployed. Which of the following is required to assess the vulnerabilities resident in the application?

    A. Repository transaction logs
    B. Common Vulnerabilities and Exposures
    C. Static code analysis
    D. Non-credentialed scans

  • Question 67:

    Which of the following terms should be included in a contract to help a company monitor the ongoing security maturity of a new vendor?

    A. A right-to-audit clause allowing for annual security audits
    B. Requirements for event logs to be kept for a minimum of 30 days
    C. Integration of threat intelligence in the company's AV
    D. A data-breach clause requiring disclosure of significant data loss

  • Question 68:

    Which of the following is the MOST relevant security check to be performed before embedding third-parry libraries in developed code?

    A. Check to see if the third party has resources to create dedicated development and staging environments.
    B. Verify the number of companies that downloaded the third-party code and the number of contributions on the code repository.
    C. Assess existing vulnerabilities affecting the third-parry code and the remediation efficiency of the libraries' developers.
    D. Read multiple penetration-testing reports for environments running software that reused the library.

  • Question 69:

    A company needs to keep the fewest records possible, meet compliance needs, and ensure destruction of records that are no longer needed. Which of the following best describes the policy that meets these requirements?

    A. Security policy
    B. Classification policy
    C. Retention policy
    D. Access control policy

  • Question 70:

    A user downloaded an extension for a browser, and the user's device later became infected. The analyst who is investigating the incident saw various logs where the attacker was hiding activity by deleting data. The following was observed

    running:

    New-Partition -DiskNumber 2 -UseMaximumSize -AssignDriveLetter C| Format-Volume -DriveLetter C - FileSystemLabel "New"-FileSystem NTFS - Full -Force -Confirm:$false |

    Which of the following is the malware using to execute the attack?

    A. PowerShell
    B. Python
    C. Bash
    D. Macros

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-601 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.