The internal audit team determines a software application is no longer in scope for external reporting requirements. Which of the following will confirm management's perspective that the application is no longer applicable?

Acknowledgement and attestation

Which of the following is a benefit of an RTO when conducting a business impact analysis?

It determines how long an organization can tolerate downtime after an incident.

It determines the likelihood of an incident and its cost.

It determines the roles and responsibilities for incident responders.

It determines the state that systems should be restored to following an incident.

It determines how long an organization can tolerate downtime after an incident.

An organization is evaluating new regulatory requirements associated with the implementation of corrective controls on a group of interconnected financial systems. Which of the following is the most likely reason for the new requirement?

To ensure that errors are not passed to other systems

To defend against insider threats altering banking details

To ensure that errors are not passed to other systems

To allow for business insurance to be purchased

To prevent unauthorized changes to financial data

A security analyst is prioritizing vulnerability scan results using a risk-based approach. Which of the following is the most efficient resource for the analyst to use?

Common Vulnerability Scoring System

Which of the following is an example of memory injection?

Malicious code is copied to the allocated space of an already running process.

Two processes access the same variable, allowing one to cause a privilege escalation.

A process receives an unexpected amount of data, which causes malicious code to be executed.

Malicious code is copied to the allocated space of an already running process.

An executable is overwritten on the disk, and malicious code runs the next time it is executed.

A security administrator needs to reduce the attack surface in the company's data centers. Which of the following should the security administrator do to complete this task?

Upgrade end-of-support operating systems.

Define Group Policy on the servers.

Configure the servers for high availability.

Upgrade end-of-support operating systems.

Which of the following is the most relevant reason a DPO would develop a data inventory?

To determine the impact in the event of a breach

To manage data storage requirements better

To determine the impact in the event of a breach

To extend the length of time data can be retained

To automate the reduction of duplicated data

Which of the following definitions best describes the concept of log co-relation?

Analyzing the log files of the system components

Combining relevant logs from multiple sources into ono location

Searching end processing, data to identify patterns of malicious activity

Making a record of the events that occur in the system

Analyzing the log files of the system components

Which of the following is a compensating control for providing user access to a high-risk website?

Enabling threat prevention features on the firewall

Configuring a SIEM tool to capture all web traffic

Setting firewall rules to allow traffic from any port to that destination

Blocking that website on the endpoint protection software

An administrator is installing an SSL certificate on a new system. During testing, errors indicate that the certificate is not trusted. The administrator has verified with the issuing CA and has validated the private key. Which of the following should the administrator check for next?

If the root certificate is installed

If the wildcard certificate is configured

If the certificate signing request is valid

If the root certificate is installed

If the public key is configured

An organization is implementing a COPE mobile device management policy. Which of the following should the organization include in the COPE policy? (Select two).

Requiring passwords with eight characters

Personal application store access

A company discovered its data was advertised for sale on the dark web. During the initial investigation, the company determined the data was proprietary data. Which of the following is the next step the company should take?

Notify the applicable parties of the breach.

Identity the attacker sentry methods.

Report the breach to the local authorities.

Notify the applicable parties of the breach.

Implement vulnerability scanning of the company's systems.

An administrator needs to perform server hardening before deployment. Which of the following steps should the administrator take? (Select two).

Add the server to the asset inventory.

Join the server to the corporate domain.

Which of the following should a security team do first before a new web server goes live?

Enable network intrusion detection.

A security analyst wants to better understand the behavior of users and devices in order to gain visibility into potential malicious activities. The analyst needs a control to detect when actions deviate from a common baseline Which of the following should the analyst use?

Endpoint detection and response

CompTIA SY0-701 Practice Test 11 - Free Online Exam Prep & Questions

A company is considering an expansion of access controls for an application that contractors and internal employees use to reduce costs. Which of the following risk elements should the implementation team understand before granting access to the application?

Become a Premium Member for full access

Unlock Premium Member

CompTIA SY0-701 Practice Test 11

Question

CompTIA SY0-701 Practice Tests

Practice Tests