SY0-701 Exam Details

  • Exam Code
    :SY0-701
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1016 Q&As
  • Last Updated
    :Jul 14, 2026

CompTIA SY0-701 Online Questions & Answers

  • Question 51:

    Various stakeholders are meeting to discuss their hypothetical roles and responsibilities in a specific situation, such as a security incident or major disaster.

    Which of the following best describes this meeting?

    A. Penetration test
    B. Continuity of operations planning
    C. Tabletop exercise
    D. Simulation

  • Question 52:

    An employee clicked a malicious link in an email and downloaded malware onto the company's computer network. The malicious program exfiltrated thousands of customer records.

    Which of the following should the company implement to prevent this in the future?

    A. User awareness training
    B. Network monitoring
    C. Endpoint protection
    D. Data loss prevention

  • Question 53:

    A customer of a large company receives a phone call from someone claiming to work for the company and asking for the customer's credit card information. The customer sees the caller ID is the same as the company's main phone number.

    Which of the following attacks is the customer most likely a target of?

    A. Phishing
    B. Whaling
    C. Smishing
    D. Vishing

  • Question 54:

    Which of the following is the most likely to be used to document risks, responsible parties, and thresholds?

    A. Risk tolerance
    B. Risk transfer
    C. Risk register
    D. Risk analysis

  • Question 55:

    An analyst is performing a vulnerability scan against the web servers exposed to the internet without a system account.

    Which of the following is most likely being performed?

    A. Non-credentialed scan
    B. Packet capture
    C. Privilege escalation
    D. System enumeration
    E. Passive scan

  • Question 56:

    A network administrator deploys an FDE solution on all end user workstations.

    Which of the following data protection strategies does this describe?

    A. Masking
    B. Data in transit
    C. Obfuscation
    D. Data at rest
    E. Data sovereignty

  • Question 57:

    Which of the following should a security administrator adhere to when setting up a new set of firewall rules?

    A. Disaster recovery plan
    B. Incident response procedure
    C. Business continuity plan
    D. Change management procedure

  • Question 58:

    A few weeks after deploying additional email servers, employees complain that messages are being marked as spam.

    Which needs to be updated?

    A. CNAME
    B. SMTP
    C. DLP
    D. SPF

  • Question 59:

    Which of the following phases of the incident response process attempts to minimize disruption?

    A. Recovery
    B. Containment
    C. Preparation
    D. Analysis

  • Question 60:

    A user is attempting to navigate to a website from inside the company network using a desktop. When the user types in the URL. https://www.site.com, the user is presented with a certificate mismatch warning from the browser. The user does not receive a warning when visiting http://www.anothersite.com.

    Which of the following describes this attack?

    A. On-path
    B. Domain hijacking
    C. DNS poisoning
    D. Evil twin

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-701 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.