CompTIA Security+ SY0-701 Dumps (V16.02) with SY0-701 Free Dumps (Part 3, Q81-Q120): Check More Free Demos Online to Verify the Quality

1. A security manager created new documentation to use in response to various types of security incidents.

Which of the following is the next step the manager should take?

2. Users at a company are reporting they are unable to access the URL for a new retail website because it is flagged as gambling and is being blocked.

Which of the following changes would allow users to access the site?

3. An administrator discovers that some files on a database server were recently encrypted. The administrator sees from the security logs that the data was last accessed by a domain user.

Which of the following best describes the type of attack that occurred?

4. Which of the following automation use cases would best enhance the security posture of an organization by rapidly updating permissions when employees leave a company?

5. Which of the following must be considered when designing a high-availability network? (Select two).

6. Which of the following methods to secure credit card data is best to use when a requirement is to see only the last four numbers on a credit card?

7. An administrator finds that all user workstations and servers are displaying a message that is associated with files containing an extension of .ryk.

Which of the following types of infections is present on the systems?

8. A healthcare organization wants to provide a web application that allows individuals to digitally report health emergencies.

Which of the following is the most important consideration during development?

9. An organization wants a third-party vendor to do a penetration test that targets a specific device. The organization has provided basic information about the device.

Which of the following best describes this kind of penetration test?

10. An attacker posing as the Chief Executive Officer calls an employee and instructs the employee to buy gift cards.

Which of the following techniques is the attacker using?

11. An organization is leveraging a VPN between its headquarters and a branch location.

Which of the following is the VPN protecting?

12. The marketing department set up its own project management software without telling the appropriate departments.

Which of the following describes this scenario?

13. An enterprise is trying to limit outbound DNS traffic originating from its internal network. Outbound DNS requests will only be allowed from one device with the IP address 10.50.10.25.

Which of the following firewall ACLs will accomplish this goal?

14. After a security incident, a systems administrator asks the company to buy a NAC platform.

Which of the following attack surfaces is the systems administrator trying to protect?

15. Which of the following factors are the most important to address when formulating a training curriculum plan for a security awareness program? (Select two).

16. An organization disabled unneeded services and placed a firewall in front of a business-critical legacy system.

Which of the following best describes the actions taken by the organization?

17. Which of the following is the best reason to complete an audit in a banking environment?

18. A security administrator is deploying a DLP solution to prevent the exfiltration of sensitive customer data.

Which of the following should the administrator do first?

19. Which of the following describes a security alerting and monitoring tool that collects system, application, and network logs from multiple sources in a centralized system?

20. Which of the following are cases in which an engineer should recommend the decommissioning of a network device? (Select two).

21. An administrator assists the legal and compliance team with ensuring information about customer transactions is archived for the proper time period.

Which of the following data policies is the administrator carrying out?

22. A systems administrator is working on a solution with the following requirements:

• Provide a secure zone.

• Enforce a company-wide access control policy.

• Reduce the scope of threats.

Which of the following is the systems administrator setting up?

23. A security administrator needs a method to secure data in an environment that includes some form of checks so that the administrator can track any changes.

Which of the following should the administrator set up to achieve this goal?

24. Which of the following is the phase in the incident response process when a security analyst reviews roles and responsibilities?

25. A company is discarding a classified storage array and hires an outside vendor to complete the disposal.

Which of the following should the company request from the vendor?

26. Which of the following would be the best ways to ensure only authorized personnel can access a secure facility? (Select two).

27. A company's marketing department collects, modifies, and stores sensitive customer data. The infrastructure team is responsible for securing the data while in transit and at rest.

Which of the following data roles describes the customer?

28. Malware spread across a company's network after an employee visited a compromised industry blog.

Which of the following best describes this type of attack?

29. After a recent ransomware attack on a company's system, an administrator reviewed the log files.

Which of the following control types did the administrator use?

30. Which of the following agreement types defines the time frame in which a vendor needs to respond?

31. A Chief Information Security Officer wants to monitor the company's servers for SQLi attacks and

allow for comprehensive investigations if an attack occurs. The company uses SSL decryption to allow traffic monitoring.

Which of the following strategies would best accomplish this goal?

32. A client demands at least 99.99% uptime from a service provider's hosted security services.

Which of the following documents includes the information the service provider should return to the client?

33. A company is adding a clause to its AUP that states employees are not allowed to modify the operating system on mobile devices.

Which of the following vulnerabilities is the organization addressing?

34. Which of the following practices would be best to prevent an insider from introducing malicious code into a company's development process?

35. A systems administrator is creating a script that would save time and prevent human error when performing account creation for a large number of end users.

Which of the following would be a good use case for this task?

36. After an audit, an administrator discovers all users have access to confidential data on a file server.

Which of the following should the administrator use to restrict access to the data quickly?

37. A Chief Information Security Officer (CISO) wants to explicitly raise awareness about the increase of

ransomware-as-a-service in a report to the management team.

Which of the following best describes the threat actor in the CISO's report?

38. A small business uses kiosks on the sales floor to display product information for customers. A security team discovers the kiosks use end-of-life operating systems.

Which of the following is the security team most likely to document as a security implication of the current architecture?

39. A company is developing a critical system for the government and storing project information on a fileshare.

Which of the following describes how this data will most likely be classified? (Select two).

40. After reviewing the following vulnerability scanning report:

Server:192.168.14.6

Service: Telnet

Port: 23 Protocol: TCP

Status: Open Severity: High

Vulnerability: Use of an insecure network protocol

A security analyst performs the following test:

nmap -p 23 192.168.14.6 ―script telnet-encryption

PORT STATE SERVICE REASON

23/tcp open telnet syn-ack

I telnet encryption:

| _ Telnet server supports encryption

Which of the following would the security analyst conclude for this reported vulnerability?