CompTIA CompTIA Certifications SY0-601 Questions & Answers

• Question 711:

  Which of the following allows for functional test data to be used in new systems for testing and training purposes to protect the real data?

  A. Data encryption

  B. Data masking

  C. Data deduplication

  D. Data minimization

  Correct Answer: B

  The main reason for applying masking to a data field is to protect data that is classified as personally identifiable information, sensitive personal data, or commercially sensitive data. However, the data must remain usable for the purposes of undertaking valid test cycles. It must also look real and appear consistent. It is more common to have masking applied to data that is represented outside of a corporate production system. In other words, where data is needed for the purpose of application development, building program extensions and conducting various test cycles https://en.wikipedia.org/wiki/Data_masking

• Question 712:

  Which of the following is a team of people dedicated testing the effectiveness of organizational security programs by emulating the techniques of potential attackers?

  A. Red team

  B. While team

  C. Blue team

  D. Purple team

  Correct Answer: A

  Red team--performs the offensive role to try to infiltrate the target.

• Question 713:

  A company is adopting a BYOD policy and is looking for a comprehensive solution to protect company information on user devices. Which of the following solutions would BEST support the policy?

  A. Mobile device management

  B. Full-device encryption

  C. Remote wipe

  D. Biometrics

  Correct Answer: A

  A would be the only reasonable answer. When it comes to someone else device you cannot expect to implement a remote wipe or even a full data encryption. This is only really done in a system that was given out by the company. While biometrics would help I would not say its the best answer to choose as it only provide a basic layer of security. Having proper Mobile Device Management polices put in place and having it taught to employees is a better and safer alternative than just having biometrics setup.

• Question 714:

  A network administrator has been asked to design a solution to improve a company's security posture The administrator is given the following, requirements?

  1.

  The solution must be inline in the network

  2.

  The solution must be able to block known malicious traffic

  3.

  The solution must be able to stop network-based attacks

  Which of the following should the network administrator implement to BEST meet these requirements?

  A. HIDS

  B. NIDS

  C. HIPS

  D. NIPS

  Correct Answer: D

  1.

  "The solution must be inline in the network"; can't be host based so NIDS or NIPS.

  2.

  "The solution must be able to block known malicious traffic."; can't be IDS as must prevent so NIPS.

  3.

  "The solution must be able to stop network-based attacks."; again, network based so can't be HIDS or HIPS.

• Question 715:

  Which of the following should be put in place when negotiating with a new vendor about the timeliness of the response to a significant outage or incident?

  A. MOU

  B. MTTR

  C. SLA

  D. NDA

  Correct Answer: C

  Service level agreement is used to decide what is to be expected from both sides.

• Question 716:

  A company is designing the layout of a new datacenter so it will have an optimal environmental temperature Which of the following must be included? (Select TWO)

  A. An air gap

  B. A cold aisle

  C. Removable doors

  D. A hot aisle

  E. An loT thermostat

  F. A humidity monitor

  Correct Answer: BD

  Hot aisle/cold aisle refers to a layout design especially for data warehouses or datacenters where huge servers and computing equipment are kept and data is stored. The purpose of the hot aisle/cold aisle scheme is to manage air flow in data centers, consequently lowering the energy, cooling and management cost inside data centers

• Question 717:

  Users at organization have been installing programs from the internet on their workstations without first proper authorization. The organization maintains a portal from which users can install standardized programs. However, some users have administrative access on their workstations to enable legacy programs to function property. Which of the following should the security administrator consider implementing to address this issue?

  A. Application code signing

  B. Application whitellsting

  C. Data loss prevention

  D. Web application firewalls

  Correct Answer: B

  Application whitelisting is the practice of specifying an index of approved software applications or executable files that are permitted to be present and active on a computer system. The goal of whitelisting is to protect computers and networks from potentially harmful applications.

  In general, a whitelist is an index of approved entities. In information security (infosec), whitelisting works best in centrally managed environments, where systems are subject to a consistent workload. https://searchsecurity.techtarget.com/definition/application-whitelisting

• Question 718:

  A security engineer needs to implement an MDM solution that complies with the corporate mobile device policy. The policy states that in order for mobile users to access corporate resources on their devices, the following requirements must be met:

  1.

  Mobile device OSs must be patched up to the latest release.

  2.

  A screen lock must be enabled (passcode or biometric).

  3.

  Corporate data must be removed if the device is reported lost or stolen.

  Which of the following controls should the security engineer configure? (Choose two.)

  A. Containerization

  B. Storage segmentation

  C. Posturing

  D. Remote wipe

  E. Full-device encryption

  F. Geofencing

  Correct Answer: CD

  If a mobile device does not meet the policy requirements, such as having an outdated OS or not being able to enable a screen lock, it should not be allowed access to corporate resources until it meets these requirements.

  to the point "posturing" becomes particularly relevant and first priority. Posturing, as part of a Mobile Device Management (MDM) solution, can assess the compliance of mobile devices with the corporate security policy. If a device is found to be non-compliant (e.g., due to an outdated OS or lack of a screen lock), the MDM solution can restrict or deny access to corporate resources until the device is brought into compliance. Posturing: Use posturing checks to verify that mobile devices comply with the policy's requirements, such as having an up-to-date OS and enabling a screen lock.

• Question 719:

  A user enters a password to log in to a workstation and is then prompted to enter an authentication code.

  Which of the following MFA factors or attributes are being utilized in the authentication process? (Select TWO).

  A. Something you know

  B. Something you have

  C. Somewhere you are

  D. Someone you are

  E. Something you are

  F. Something you can do

  Correct Answer: AB

  This is yet another poorly worded question, obviously the password is something you know, the authentication code is extremely vague. If you are like me you were looking for the option that this isn't MFA or two options of "something you know". But it is up to us to suss out that an authentication code can come from a item you have such as a phone or phob etc.....

• Question 720:

  An organization with a low tolerance for user inconvenience wants to protect laptop hard drives against loss or data theft. Which of the following would be the MOST acceptable?

  A. SED

  B. HSM

  C. DLP

  D. TPM

  Correct Answer: A

  Self-encrypting drives are pretty fool proof, for the current iteration of fools.