SY0-701 Dumps Questions - Effective Way to Get Certified

SY0-701 Dumps Questions – Effective Way to Get Certified

Category:

Comments:

0 Comments

Post Date:

December 9, 2023

If you're in the field of CompTIA, you know how important it is to stay up-to-date with the latest knowledge and skills to protect your organization's networks and data. One way to do that is by obtaining CompTIA Security+, specifically the SY0-701 exam. While preparing for the SY0-701 exam, you might consider using SY0-701 dumps to help you familiarize yourself with the exam format and content. These SY0-701 exam dumps questions can be an effective way to gauge your knowledge and identify areas where you may need additional study. Study online free SY0-701 exam dumps below.

Page 1 of 6

1. An engineer needs to find a solution that creates an added layer of security by preventing unauthorized access to internal company resources.

Which of the following would be the best solution?

RDP server

Jump server

Proxy server

Hypervisor

2. A healthcare organization wants to provide a web application that allows individuals to digitally report health emergencies.

Which of the following is the most important consideration during development?

Scalability

Availability

Cost

Ease of deployment

3. An administrator notices that several users are logging in from suspicious IP addresses. After speaking with the users, the administrator determines that the employees were not logging in from those IP addresses and resets the affected users’ passwords.

Which of the following should the administrator implement to prevent this type of attack from succeeding in the future?

Multifactor authentication

Permissions assignment

Access management

Password complexity

4. Which of the following describes the maximum allowance of accepted risk?

Risk indicator

Risk level

Risk score

Risk threshold

5. An organization is building a new backup data center with cost-benefit as the primary requirement and RTO and RPO values around two days.

Which of the following types of sites is the best for this scenario?

Real-time recovery

Hot

Cold

Warm

6. An employee receives a text message that appears to have been sent by the payroll department and is asking for credential verification.

Which of the following social engineering techniques are being attempted? (Choose two.)

Typosquatting

Phishing

Impersonation

Vishing

Smishing

Misinformation

7. An IT manager informs the entire help desk staff that only the IT manager and the help desk lead will have access to the administrator console of the help desk software.

Which of the following security techniques is the IT manager setting up?

Hardening

Employee monitoring

Configuration enforcement

Least privilege

8. A hacker gained access to a system via a phishing attempt that was a direct result of a user clicking a suspicious link. The link laterally deployed ransomware, which laid dormant for multiple weeks, across the network.

Which of the following would have mitigated the spread?

IPS

IDS

WAF

UAT

9. A company has begun labeling all laptops with asset inventory stickers and associating them with employee IDs.

Which of the following security benefits do these actions provide? (Choose two.)

If a security incident occurs on the device, the correct employee can be notified.

The security team will be able to send user awareness training to the appropriate device.

Users can be mapped to their devices when configuring software MFA tokens.

User-based firewall policies can be correctly targeted to the appropriate laptops.

When conducting penetration testing, the security team will be able to target the desired laptops.

Company data can be accounted for when the employee leaves the organization.

10. A company decided to reduce the cost of its annual cyber insurance policy by removing the coverage for ransomware attacks.

Which of the following analysis elements did the company most likely use in making this decision?

IMTTR

RTO

ARO

MTBF

Page 2 of 6

11. An administrator discovers that some files on a database server were recently encrypted. The administrator sees from the security logs that the data was last accessed by a domain user.

Which of the following best describes the type of attack that occurred?

Insider threat

Social engineering

Watering-hole

Unauthorized attacker

12. An administrator finds that all user workstations and servers are displaying a message that is associated with files containing an extension of .ryk.

Which of the following types of infections is present on the systems?

Virus

Trojan

Spyware

Ransomware

13. A company purchased cyber insurance to address items listed on the risk register.

Which of the following strategies does this represent?

Transfer

Mitigate

Avoid

14. A company must ensure sensitive data at rest is rendered unreadable.

Which of the following will the company most likely use?

Hashing

Tokenization

Encryption

Segmentation

15. Which of the following would be the best way to handle a critical business application that is running on a legacy server?

Segmentation

Isolation

Hardening

Decommissioning

16. An administrator was notified that a user logged in remotely after hours and copied large amounts of data to a personal device.

Which of the following best describes the user’s activity?

Penetration testing

Phishing campaign

External audit

Insider threat

17. A company is developing a critical system for the government and storing project information on a fileshare.

Which of the following describes how this data will most likely be classified? (Select two).

Private

Confidential

Public

Operational

Urgent

Restricted

18. An enterprise is trying to limit outbound DNS traffic originating from its internal network. Outbound DNS requests will only be allowed from one device with the IP address 10.50.10.25.

Which of the following firewall ACLs will accomplish this goal?

Access list outbound permit 0.0.0.0 0 0.0.0.0/0 port 53 Access list outbound deny 10.50.10.25 32 0.0.0.0/0 port 53

Access list outbound permit 0.0.0.0/0 10.50.10.25 32 port 53 Access list outbound deny 0.0.0.0 0 0.0.0.0/0 port 53

Access list outbound permit 0.0.0.0 0 0.0.0.0/0 port 53 Access list outbound deny 0.0.0.0/0 10.50.10.25 32 port 53

Access list outbound permit 10.50.10.25 32 0.0.0.0/0 port 53 Access list outbound deny 0.0.0.0.0.0.0.0.0/0 port 53

19. A company is discarding a classified storage array and hires an outside vendor to complete the disposal.

Which of the following should the company request from the vendor?

Certification

Inventory list

Classification

Proof of ownership

20. A user is attempting to patch a critical system, but the patch fails to transfer.

Which of the following access controls is most likely inhibiting the transfer?

Attribute-based

Time of day

Role-based

Least privilege

Page 3 of 6

21. Which of the following is the most likely to be used to document risks, responsible parties, and thresholds?

Risk tolerance

Risk transfer

Risk register

Risk analysis

22. A security analyst is reviewing alerts in the SIEM related to potential malicious network traffic coming from an employee’s corporate laptop. The security analyst has determined that additional data about the executable running on the machine is necessary to continue the investigation.

Which of the following logs should the analyst use as a data source?

Application

IPS/IDS

Network

Endpoint

23. A security consultant needs secure, remote access to a client environment.

Which of the following should the security consultant most likely use to gain access?

EAP

DHCP

IPSec

NAT

24. A bank insists all of its vendors must prevent data loss on stolen laptops.

Which of the following strategies is the bank requiring?

Encryption at rest

Masking

Data classification

Permission restrictions

25. A client asked a security company to provide a document outlining the project, the cost, and the completion time frame.

Which of the following documents should the company provide to the client?

MSA

SLA

BPA

SOW

26. Which of the following agreement types defines the time frame in which a vendor needs to respond?

SOW

SLA

MOA

MOU

27. A security analyst is reviewing the following logs:

Which of the following attacks is most likely occurring?

Password spraying

Account forgery

Pass-t he-hash

Brute-force

28. A security analyst locates a potentially malicious video file on a server and needs to identify both the creation date and the file's creator.

Which of the following actions would most likely give the security analyst the information required?

Obtain the file's SHA-256 hash.

Use hexdump on the file's contents.

Check endpoint logs.

Query the file's metadata.

29. During an investigation, an incident response team attempts to understand the source of an incident.

Which of the following incident response activities describes this process?

Analysis

Lessons learned

Detection

Containment

30. An organization’s internet-facing website was compromised when an attacker exploited a buffer overflow.

Which of the following should the organization deploy to best protect against similar attacks in the future?

NGFW

WAF

TLS

SD-WAN

Page 4 of 6

31. A newly identified network access vulnerability has been found in the OS of legacy loT devices.

Which of the following would best mitigate this vulnerability quickly?

Insurance

Patching

Segmentation

Replacement

32. A company is working with a vendor to perform a penetration test.

Which of the following includes an estimate about the number of hours required to complete the engagement?

SOW

BPA

SLA

NDA

33. Which of the following is the most likely to be included as an element of communication in a security awareness program?

Reporting phishing attempts or other suspicious activities

Detecting insider threats using anomalous behavior recognition

Verifying information when modifying wire transfer data

Performing social engineering as part of third-party penetration testing

34. An attacker posing as the Chief Executive Officer calls an employee and instructs the employee to buy gift cards.

Which of the following techniques is the attacker using?

Smishing

Disinformation

Impersonating

Whaling

35. Which of the following allows for the attribution of messages to individuals?

Adaptive identity

Non-repudiation

Authentication

Access logs

36. After a company was compromised, customers initiated a lawsuit. The company's attorneys have requested that the security team initiate a legal hold in response to the lawsuit.

Which of the following describes the action the security team will most likely be required to take?

Retain the emails between the security team and affected customers for 30 days.

Retain any communications related to the security breach until further notice.

Retain any communications between security members during the breach response.

Retain all emails from the company to affected customers for an indefinite period of time.

37. A technician is opening ports on a firewall for a new system being deployed and supported by a SaaS provider.

Which of the following is a risk in the new system?

Default credentials

Non-segmented network

Supply chain vendor

Vulnerable software

38. Which of the following is used to add extra complexity before using a one-way data transformation algorithm?

Key stretching

Data masking

Steganography

Salting

39. During the onboarding process, an employee needs to create a password for an intranet account. The password must include ten characters, numbers, and letters, and two special characters. Once the password is created, the company will grant the employee access to other company-owned websites based on the intranet profile.

Which of the following access management concepts is the company most likely using to safeguard intranet accounts and grant access to multiple sites based on a user's intranet account? (Select two).

Federation

Identity proofing

Password complexity

Default password changes

Password manager

Open authentication

40. Which of the following must be considered when designing a high-availability network? (Choose two).

Ease of recovery

Ability to patch

Physical isolation

Responsiveness

Attack surface

Extensible authentication

Page 5 of 6

41. A company's end users are reporting that they are unable to reach external websites. After reviewing the performance data for the DNS severs, the analyst discovers that the CPU, disk, and memory usage are minimal, but the network interface is flooded with inbound traffic. Network logs show only a small number of DNS queries sent to this server.

Which of the following best describes what the security analyst is seeing?

Concurrent session usage

Secure DNS cryptographic downgrade

On-path resource consumption

Reflected denial of service

42. Which of the following incident response activities ensures evidence is properly handied?

E-discovery

Chain of custody

Legal hold

Preservation

43. Which of the following is the most likely outcome if a large bank fails an internal PCI DSS compliance assessment?

Fines

Audit findings

Sanctions

Reputation damage

44. A security analyst receives alerts about an internal system sending a large amount of unusual DNS queries to systems on the internet over short periods of time during non-business hours.

Which of the following is most likely occurring?

A worm is propagating across the network.

Data is being exfiltrated.

A logic bomb is deleting data.

Ransomware is encrypting files.

45. After a security awareness training session, a user called the IT help desk and reported a suspicious call. The suspicious caller stated that the Chief Financial Officer wanted credit card information in order to close an invoice.

Which of the following topics did the user recognize from the training?

Insider threat

Email phishing

Social engineering

Executive whaling

46. A systems administrator is looking for a low-cost application-hosting solution that is cloud-based.

Which of the following meets these requirements?

Serverless framework

Type 1 hvpervisor

SD-WAN

SDN

47. A newly appointed board member with cybersecurity knowledge wants the board of directors to receive a quarterly report detailing the number of incidents that impacted the organization. The systems administrator is creating a way to present the data to the board of directors.

Which of the following should the systems administrator use?

Packet captures

Vulnerability scans

Metadata

Dashboard

48. After an audit, an administrator discovers all users have access to confidential data on a file server.

Which of the following should the administrator use to restrict access to the data quickly?

Group Policy

Content filtering

Data loss prevention

Access control lists

49. A security administrator is deploying a DLP solution to prevent the exfiltration of sensitive customer data.

Which of the following should the administrator do first?

Block access to cloud storage websites.

Create a rule to block outgoing email attachments.

Apply classifications to the data.

Remove all user permissions from shares on the file server.

50. A company is concerned about weather events causing damage to the server room and downtime.

Which of the following should the company consider?

Clustering servers

Geographic dispersion

Load balancers

Off-site backups

Page 6 of 6

51. A U.S.-based cloud-hosting provider wants to expand its data centers to new international locations.

Which of the following should the hosting provider consider first?

Local data protection regulations

Risks from hackers residing in other countries

Impacts to existing contractual obligations

Time zone differences in log correlation

TAGS:

SY0-701, SY0-701 exam dumps

Notify of

Label

Name*

Email*

Website

Label

Name*

Email*

Website

0 Comments

Inline Feedbacks

View all comments

Posts

CompTIA Free Dumps

Get SY0-701 Dumps Full Version

Q&As: 171
Versions: PDF and Software Download Now

About Dumpsinfo

Dumpsinfo is a good platform providing the latest exam information and dumps questions for all IT certification exams. You can study all the latest exam dumps questions online.

[email protected]

Mon - Sat 9:00am - 6:00pm

SY0-701 Dumps Questions – Effective Way to Get Certified

Related

Posts

Online XK0-005 Exam Dumps Help You Build Confidence

DS0-001 Dumps Questions Increase Your Chance of Success

Get Certified Easily with Online DA0-001 Dumps

CS0-003 Dumps Guarantee You Pass CS0-003 Exam Easily

About Us

EMAIL

Services

Opening Hours