A new plug-and-play storage device was installed on a PC in the corporate environment. Which of the following safeguards will BEST help to protect the PC from malicious files on the storage device?

Change the default settings on the PC.

Define the PC firewall rules to limit access.

Encrypt the disk on the storage device.

Plug the storage device in to the UPS

A software company is analyzing a process that detects software vulnerabilities at the earliest stage possible. The goal is to scan the source looking for unsecure practices and weaknesses before the application is deployed in a runtime environment. Which of the following would BEST assist the company with this objective?

Use a web vulnerability scanner

A systems engineer is building a new system for production. Which of the following is the FINAL step to be performed prior to promoting to production?

Install the latest security patches.

A company Is planning to install a guest wireless network so visitors will be able to access the Internet. The stakeholders want the network to be easy to connect to so time is not wasted during meetings. The WAPs are configured so that power levels and antennas cover only the conference rooms where visitors will attend meetings.Which of the following would BEST protect the company's Internal wireless network against visitors accessing company resources?

Configure the guest wireless network to be on a separate VLAN from the company's internal wireless network

Change the password for the guest wireless network every month.

Decrease the power levels of the access points for the guest wireless network.

Enable WPA2 using 802.1X for logging on to the guest wireless network.

A security manager needs to assess the security posture of one of the organization's vendors. The contract with the vendor does not allow for auditing of the vendor's security controls. Which of (he following should the manager request to complete the assessment?

A business partnership agreement

A junior security analyst is reviewing web server logs and identifies the following pattern in the log file: Which ol the following types of attacks is being attempted and how can it be mitigated?

Directory traversal implement a WAF

An information security manager for an organization is completing a PCI DSS self-assessment for the first time. which of the is following MOST likely reason for this type of assessment?

The organization is expecting to process credit card information.

An international expansion project is currently underway.

Outside consultants utilize this tool to measure security maturity.

The organization is expecting to process credit card information.

A government regulator has requested this audit to be completed

As part of the building process for a web application, the compliance team requires that all PKI certificates are rotated annually and can only contain wildcards at the secondary subdomain level. Which of the following certificate properties will meet these requirements?

HTTPS://.comptia.org, Valid from April 10 00:00:00 2021 - April 8 12:00:00 2022

HTTPS://app1.comptia.org, Valid from April 10 00:00:00 2021-April 8 12:00:00 2022

HTTPS:// app1.comptia.org, Valid from April 10 00:00:00 2021-April 8 12:00:00 2022

HTTPS://.comptia.org, Valid from April 10 00:00:00 2021 - April 8 12:00:00

A Chief Information Security Officer (CISO) is evaluating (he dangers involved in deploying a new ERP system tor the company. The CISO categorizes the system, selects the controls mat apply to the system, implements the controls, and then assesses the success of the controls before authorizing the system Which of the following is the CISO using to evaluate Hie environment for this new ERP system?

NIST Risk Management Framevtoik

The Diamond Model of Intrusion Analysis

NIST Risk Management Framevtoik

CompTIA SY0-601 Practice Test 4 - Free Online Exam Prep & Questions

Question 1 / 40

As part of the lessons-learned phase, the SOC is tasked with building methods to detect if a previous incident is happening again. Which of the following would allow the security analyst to alert the SOC if an event is reoccurring?

Creating a playbook within the SOAR

Implementing rules in the NGFW

Updating the DLP hash database

Publishing a new CRL with revoked certificates

Comment (0)

CompTIA SY0-601 Practice Test 4

Question

CompTIA SY0-601 Practice Tests

Practice Tests