SY0-701 Exam Details

  • Exam Code
    :SY0-701
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1016 Q&As
  • Last Updated
    :Jul 14, 2026

CompTIA SY0-701 Online Questions & Answers

  • Question 31:

    Which of the following is the main consideration when a legacy system that is a critical part of a company's infrastructure cannot be replaced?

    A. Resource provisioning
    B. Cost
    C. Single point of failure
    D. Complexity

  • Question 32:

    A software development team asked a security administrator to recommend techniques that should be used to reduce the chances of the software being reverse engineered.

    Which of the following should the security administrator recommend?

    A. Digitally signing the software
    B. Performing code obfuscation
    C. Limiting the use of third-party libraries
    D. Using compile flags

  • Question 33:

    A security analyst and the management team are reviewing the organizational performance of a recent phishing campaign. The user click-through rate exceeded the acceptable risk threshold, and the management team wants to reduce the impact when a user clicks on a link in a phishing message.

    Which of the following should the analyst do?

    A. Place posters around the office to raise awareness of common phishing activities.
    B. Implement email security filters to prevent phishing emails from being delivered
    C. Update the EDR policies to block automatic execution of downloaded programs.
    D. Create additional training for users to recognize the signs of phishing attempts.

  • Question 34:

    A systems administrator needs to encrypt all data on employee laptops.

    Which of the following encryption levels should be implemented?

    A. Volume
    B. Partition
    C. Full disk
    D. File

  • Question 35:

    A security analyst wants to better understand the behavior of users and devices in order to gain visibility into potential malicious activities. The analyst needs a control to detect when actions deviate from a common baseline.

    Which of the following should the analyst use?

    A. Intrusion prevention system
    B. Sandbox
    C. Endpoint detection and response
    D. Antivirus

  • Question 36:

    A retail company receives a request to remove a customer's data.

    Which of the following is the retail company considered under GDPR legislation?

    A. Data processor
    B. Data controller
    C. Data subject
    D. Data custodian

  • Question 37:

    A program manager wants to ensure contract employees can only use the company's computers Monday through Friday from 9 a.m. to 5 p.m.

    Which of the following would best enforce this access control?

    A. Creating a GPO for all contract employees and setting time-of-day log-in restrictions
    B. Creating a discretionary access policy and setting rule-based access for contract employees
    C. Implementing an OAuth server and then setting least privilege for contract employees
    D. Implementing SAML with federation to the contract employees' authentication server

  • Question 38:

    A security analyst is reviewing a secure website that is generating TLS certificate errors. The analyst determines that the browser is unable to receive a response from the OCSP for the certificate.

    Which of the following actions would most likely resolve the issue?

    A. Run a traceroute on the OCSP domain to find where the domain is failing.
    B. Create an exclusion for the OCSP domain in the content filter
    C. Unblock the OCSP protocol in the host-based firewall
    D. Add the root certificate to the trusted sites on the workstation with the issue.

  • Question 39:

    During a risk treatment exercise, an administrator discovers a risk that cannot be mitigated.

    Which of the following best describes this situation?

    A. Residual risk
    B. Risk appetite
    C. Reviewed risk
    D. Risk register

  • Question 40:

    During a recent breach, employee credentials were compromised when a service desk employee issued an MFA bypass code to an attacker who called and posed as an employee.

    Which of the following should be used to prevent this type of incident in the future?

    A. Hardware token MFA
    B. Biometrics
    C. Identity proofing
    D. Least privilege

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-701 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.