SYO-501 Exam Training Practice Tests (CompTIA Security+ Certification)]

Question 1

A security administrator has been conducting an account permissions review that has identified several users who belong to functional groups and groups responsible for auditing the functional groups' actions. Several recent outages have not been able to be traced to any user. Which of the following should the security administrator recommend to preserve future audit tag integrity?

A. Following standard naming conventions for audit group users. B. Applying least privilege to user group membership. C. Restricting audit group membership to service accounts. D. Enforcing stricter onboarding workflow policies.

Correct Answer: C

Question 2

Which of the following must be updated prior to conducting weekly cyber hygiene scans of a network?

A. Rainbow tables B. Antivirus definitions C. WIDS settings D. Vulnerability signatures

Correct Answer: D

Question 3

After successfully breaking into several networks and infecting multiple machines with malware. hackers contact the network owners, demanding payment to remove the infection and decrypt files. The hackers threaten to publicly release information about the breach if they are not paid. Which of the following BEST describes these attackers?

A. Organized crime B. Insiders C. Gray hat hackers D. Hacktivists

Correct Answer: A

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 4

An IT manager is estimating the mobile device budget for the upcoming year. Over the last five years, the number of devices that were replaced due to loss, damage, or theft steadily increased by 10%. Which of the following would BEST describe the estimated number of devices to be replaced next year?

A. ARO B. ALE C. SLE D. RPO

Correct Answer: C

Question 5

Which of the following are considered to be "something you do"? (Select TWO).

A. Gait B. Common Access Card C. Iris scan D. fingerprint E. Handwriting F. PIN

Correct Answer: A,E

Question 6

A company employee recently retired, and there was a schedule delay because no one was capable of filling the employee's position. Which of the following practices would BEST help to prevent this situation in the future?

A. Exit interviews B. Separation of duties C. Job rotation D. Mandatory vacation

Correct Answer: B

Question 7

A law office has been leasing dark fiber from a local telecommunications company to connect a remote office to company headquarters. The telecommunication company has decided to discontinue its dark fiber product and is offering an MPLS connection. Which the law office feels is too expensive. Which of the following is the BEST solution for the law office?

A. VLAN B. Site-to-site VPN C. VPN concentrator D. Remote access VPN

Correct Answer: B

Question 8

The help desk received a call from a user who was trying to access a set of files from the day before but received the following error message: file format not recognized. Which of the following types of malware MOST likely caused this to occur?

A. Rootkit B. Spyware C. Polymorphic virus D. Ransomware

Correct Answer: D

Question 9

A security analyst has been asked to implement secure protocols to prevent cleartext credentials from being transmitted over the internal network. Which of the following protocols is the security analyst MOST likely to implement? (Choose two.)

A. DNSSEC B. SNMPv3 C. SSH D. S/MIME E. SFTP

Correct Answer: C,E

CompTIA Security+ Certification - SYO-501 Exam Practice Test