2
CompTIA Security CertMaster Practice Exam SY0-701 questions || || || || || || ||
with accurate solutions || ||
An organization wants to ensure the security of its sensitive data stored on the company's physical
|| || || || || || || || || || || || || || ||
drives, with varying levels of access for different users. Which of the following encryption
|| || || || || || || || || || || || || || ||
methods would BEST suit this requirement? - ✔✔A combination of volume and file encryption
|| || || || || || || || || || || || ||
**Combining volume encryption with file encryption would solve the organization's needs. It || || || || || || || || || || || ||
allows encryption of the storage resource and individual files, granting granular control for
|| || || || || || || || || || || || ||
different users' access levels. || || ||
A company is considering moving its applications and data to the cloud. The company handles
|| || || || || || || || || || || || || || ||
sensitive data and wants to maintain control over the security of its applications and data. It is
|| || || || || || || || || || || || || || || || ||
considering using an infrastructure-as-a-service (IaaS) model. Which of the following is a key || || || || || || || || || || || || ||
responsibility the company will need to manage in an IaaS model? - ✔✔Protection of operating || || || || || || || || || || || || || || ||
systems when deployed || ||
**In an IaaS model, the customer is responsible for protecting the operating systems it deploys on
|| || || || || || || || || || || || || || ||
the cloud infrastructure. This includes tasks like applying security updates and patches, managing
|| || || || || || || || || || || || ||
access controls, and implementing intrusion detection systems.
|| || || || || || ||
In the event of a confirmed ransomware attack on a server containing valuable intellectual
|| || || || || || || || || || || || || ||
property, what should be the immediate next step? - ✔✔Isolate the affected server from the rest of
|| || || || || || || || || || || || || || || ||
the network by disabling its network access
|| || || || || || ||
A tech company employs the Single Loss Expectancy (SLE) and Annualized Loss Expectancy
|| || || || || || || || || || || || ||
(ALE) models for quantitative assessment and uses subjective judgment for qualitative analysis.
|| || || || || || || || || || || ||
They use a "heat map" or "traffic light" impact matrix to represent the severity of the risk, its
|| || || || || || || || || || || || || || || || || ||
likelihood, cost of controls, etc. What is the primary benefit of the company's approach of|| || || || || || || || || || || || || || ||
combining both quantitative and qualitative risk assessment methods? - ✔✔It provides both || || || || || || || || || || || ||
numerical data for precision and subjective judgment for situations in which precise data is
|| || || || || || || || || || || || || ||
unavailable.
,2
**The company's approach employs both numerical data for precision (quantitative) and
|| || || || || || || || || || ||
subjective judgment for situations in which precise data is unavailable (qualitative). This mixed || || || || || || || || || || || || ||
approach provides a comprehensive understanding of the risks, their potential impact, and the
|| || || || || || || || || || || || ||
likelihood of their occurrence. || || ||
The network administrator of a company receives an email notification about an unusual email
|| || || || || || || || || || || || || ||
activity. Multiple employees received an email with an attached file having an odd double
|| || || || || || || || || || || || || ||
extension: .docx and .hta. The email system's security feature flagged the email as potentially || || || || || || || || || || || || || ||
harmful. Based on the provided details, what type of virus is MOST likely involved in this
|| || || || || || || || || || || || || || || ||
scenario? - ✔✔Script virus || || ||
**A script virus uses the programming features available in local scripting engines for the OS
|| || || || || || || || || || || || || || ||
and/or browser, such as JavaScript. The scenario mentions an attached file with a .hta extension
|| || || || || || || || || || || || || || ||
and can enable remote code execution on fully patched Windows 11 systems when opened.
|| || || || || || || || || || || || ||
An organization receives large amounts of diverse data sources during cybersecurity incidents and
|| || || || || || || || || || || ||
needs a more efficient tool. Dealing with system memory, log files, network traffic, and endpoint
|| || || || || || || || || || || || || || || ||
security data has proven to be chaotic. What primary function would a Security Information and
|| || || || || || || || || || || || || || ||
Event Management (SIEM) tool serve in this scenario? - ✔✔Aggregating and correlating data
|| || || || || || || || || || || || ||
from multiple sources to enable efficient analysis and reporting
|| || || || || || || ||
**The primary function of a SIEM tool is to aggregate and correlate data from diverse sources. It
|| || || || || || || || || || || || || || || || ||
collects data from different systems and correlates it to identify patterns or events indicating a
|| || || || || || || || || || || || || || ||
security incident. ||
After an extensive security audit, a medium-sized corporation discovers several of its company
|| || || || || || || || || || || || ||
laptops contain malware. The malware is most likely the result of the use of unauthorized USB
|| || || || || || || || || || || || || || || ||
storage devices. The chief information security officer (CISO) wants to prevent similar incidents
|| || || || || || || || || || || || ||
in the future. Which of the following options would best mitigate this risk? - ✔✔Deploy port
|| || || || || || || || || || || || || || || ||
control software and restrict the use of USB storage devices || || || || || || || || ||
**Port control software allows the company to restrict which devices can connect via USB,
|| || || || || || || || || || || || || ||
preventing the use of unauthorized USB storage devices. This would directly address the problem || || || || || || || || || || || || || ||
without unduly limiting other uses of the laptop's physical ports. || || || || || || || || ||
, 2
Given the importance of automation and orchestration related to secure operations, a newly hired
|| || || || || || || || || || || || || ||
IT employee creates, modifies, and deletes user accounts and access rights across the company's
|| || || || || || || || || || || || || ||
IT systems. Due to the significant number of users and the heightened need for security, this task
|| || || || || || || || || || || || || || || || ||
proves to be time-consuming and error-prone. Which automation capability can not only improve
|| || || || || || || || || || || || ||
the efficiency and consistency of this task but also ensure secure operations? - ✔✔Provisioning
|| || || || || || || || || || || || ||
**Creating, modifying, or deleting user accounts and access rights across IT systems is termed as
|| || || || || || || || || || || || || || ||
provisioning. This ensures secure operations by maintaining consistency and adhering to security || || || || || || || || || || || ||
protocols.
A company plans to expand its existing network, which currently employs a basic star topology,
|| || || || || || || || || || || || || || ||
by adding hundreds more devices. What is a potential drawback of this plan? - ✔✔The network
|| || || || || || || || || || || || || || || ||
performance can be negatively impacted due to large broadcast domains. || || || || || || || || ||
The network administrator of an educational institution is upgrading an existing wireless network.
|| || || || || || || || || || || ||
The campus has various buildings, each having multiple floors, and the aim is to ensure
|| || || || || || || || || || || || || || || ||
consistent Wi-Fi coverage across the entire campus. To achieve this, a site survey and heat map
|| || || || || || || || || || || || || || || ||
creation will guide the placement and configuration of wireless access points (WAPs). Which of
|| || || || || || || || || || || || || ||
the following would MOST accurately represent the correct actions based on the survey results? -
|| || || || || || || || || || || || || || ||
✔✔Place WAPs in areas indicated weak in the heat map and increase transmit power to the
|| || || || || || || || || || || || || || || ||
highest in all devices, while avoiding unnecessary overlap.
|| || || || || || ||
A cybersecurity team has discovered an unauthorized alteration in the endpoint configuration of
|| || || || || || || || || || || || ||
several workstations within the organization, resulting in a malware infection. As part of the
|| || || || || || || || || || || || || ||
response strategy, the team must select a specific mitigation technique to prevent similar incidents
|| || || || || || || || || || || || ||
in the future. Which of the following is the MOST suitable approach to undertake? -
|| || || || || || || || || || || || || || || ||
✔✔Implement a stricter Group Policy || || || ||
A company's IT department has noticed irregularities in network usage and resource allocation.
|| || || || || || || || || || || || ||
Which tool would be MOST beneficial in collecting the metadata and statistics from the network
|| || || || || || || || || || || || || || ||
traffic? - ✔✔Flow collector || || ||
CompTIA Security CertMaster Practice Exam SY0-701 questions || || || || || || ||
with accurate solutions || ||
An organization wants to ensure the security of its sensitive data stored on the company's physical
|| || || || || || || || || || || || || || ||
drives, with varying levels of access for different users. Which of the following encryption
|| || || || || || || || || || || || || || ||
methods would BEST suit this requirement? - ✔✔A combination of volume and file encryption
|| || || || || || || || || || || || ||
**Combining volume encryption with file encryption would solve the organization's needs. It || || || || || || || || || || || ||
allows encryption of the storage resource and individual files, granting granular control for
|| || || || || || || || || || || || ||
different users' access levels. || || ||
A company is considering moving its applications and data to the cloud. The company handles
|| || || || || || || || || || || || || || ||
sensitive data and wants to maintain control over the security of its applications and data. It is
|| || || || || || || || || || || || || || || || ||
considering using an infrastructure-as-a-service (IaaS) model. Which of the following is a key || || || || || || || || || || || || ||
responsibility the company will need to manage in an IaaS model? - ✔✔Protection of operating || || || || || || || || || || || || || || ||
systems when deployed || ||
**In an IaaS model, the customer is responsible for protecting the operating systems it deploys on
|| || || || || || || || || || || || || || ||
the cloud infrastructure. This includes tasks like applying security updates and patches, managing
|| || || || || || || || || || || || ||
access controls, and implementing intrusion detection systems.
|| || || || || || ||
In the event of a confirmed ransomware attack on a server containing valuable intellectual
|| || || || || || || || || || || || || ||
property, what should be the immediate next step? - ✔✔Isolate the affected server from the rest of
|| || || || || || || || || || || || || || || ||
the network by disabling its network access
|| || || || || || ||
A tech company employs the Single Loss Expectancy (SLE) and Annualized Loss Expectancy
|| || || || || || || || || || || || ||
(ALE) models for quantitative assessment and uses subjective judgment for qualitative analysis.
|| || || || || || || || || || || ||
They use a "heat map" or "traffic light" impact matrix to represent the severity of the risk, its
|| || || || || || || || || || || || || || || || || ||
likelihood, cost of controls, etc. What is the primary benefit of the company's approach of|| || || || || || || || || || || || || || ||
combining both quantitative and qualitative risk assessment methods? - ✔✔It provides both || || || || || || || || || || || ||
numerical data for precision and subjective judgment for situations in which precise data is
|| || || || || || || || || || || || || ||
unavailable.
,2
**The company's approach employs both numerical data for precision (quantitative) and
|| || || || || || || || || || ||
subjective judgment for situations in which precise data is unavailable (qualitative). This mixed || || || || || || || || || || || || ||
approach provides a comprehensive understanding of the risks, their potential impact, and the
|| || || || || || || || || || || || ||
likelihood of their occurrence. || || ||
The network administrator of a company receives an email notification about an unusual email
|| || || || || || || || || || || || || ||
activity. Multiple employees received an email with an attached file having an odd double
|| || || || || || || || || || || || || ||
extension: .docx and .hta. The email system's security feature flagged the email as potentially || || || || || || || || || || || || || ||
harmful. Based on the provided details, what type of virus is MOST likely involved in this
|| || || || || || || || || || || || || || || ||
scenario? - ✔✔Script virus || || ||
**A script virus uses the programming features available in local scripting engines for the OS
|| || || || || || || || || || || || || || ||
and/or browser, such as JavaScript. The scenario mentions an attached file with a .hta extension
|| || || || || || || || || || || || || || ||
and can enable remote code execution on fully patched Windows 11 systems when opened.
|| || || || || || || || || || || || ||
An organization receives large amounts of diverse data sources during cybersecurity incidents and
|| || || || || || || || || || || ||
needs a more efficient tool. Dealing with system memory, log files, network traffic, and endpoint
|| || || || || || || || || || || || || || || ||
security data has proven to be chaotic. What primary function would a Security Information and
|| || || || || || || || || || || || || || ||
Event Management (SIEM) tool serve in this scenario? - ✔✔Aggregating and correlating data
|| || || || || || || || || || || || ||
from multiple sources to enable efficient analysis and reporting
|| || || || || || || ||
**The primary function of a SIEM tool is to aggregate and correlate data from diverse sources. It
|| || || || || || || || || || || || || || || || ||
collects data from different systems and correlates it to identify patterns or events indicating a
|| || || || || || || || || || || || || || ||
security incident. ||
After an extensive security audit, a medium-sized corporation discovers several of its company
|| || || || || || || || || || || || ||
laptops contain malware. The malware is most likely the result of the use of unauthorized USB
|| || || || || || || || || || || || || || || ||
storage devices. The chief information security officer (CISO) wants to prevent similar incidents
|| || || || || || || || || || || || ||
in the future. Which of the following options would best mitigate this risk? - ✔✔Deploy port
|| || || || || || || || || || || || || || || ||
control software and restrict the use of USB storage devices || || || || || || || || ||
**Port control software allows the company to restrict which devices can connect via USB,
|| || || || || || || || || || || || || ||
preventing the use of unauthorized USB storage devices. This would directly address the problem || || || || || || || || || || || || || ||
without unduly limiting other uses of the laptop's physical ports. || || || || || || || || ||
, 2
Given the importance of automation and orchestration related to secure operations, a newly hired
|| || || || || || || || || || || || || ||
IT employee creates, modifies, and deletes user accounts and access rights across the company's
|| || || || || || || || || || || || || ||
IT systems. Due to the significant number of users and the heightened need for security, this task
|| || || || || || || || || || || || || || || || ||
proves to be time-consuming and error-prone. Which automation capability can not only improve
|| || || || || || || || || || || || ||
the efficiency and consistency of this task but also ensure secure operations? - ✔✔Provisioning
|| || || || || || || || || || || || ||
**Creating, modifying, or deleting user accounts and access rights across IT systems is termed as
|| || || || || || || || || || || || || || ||
provisioning. This ensures secure operations by maintaining consistency and adhering to security || || || || || || || || || || || ||
protocols.
A company plans to expand its existing network, which currently employs a basic star topology,
|| || || || || || || || || || || || || || ||
by adding hundreds more devices. What is a potential drawback of this plan? - ✔✔The network
|| || || || || || || || || || || || || || || ||
performance can be negatively impacted due to large broadcast domains. || || || || || || || || ||
The network administrator of an educational institution is upgrading an existing wireless network.
|| || || || || || || || || || || ||
The campus has various buildings, each having multiple floors, and the aim is to ensure
|| || || || || || || || || || || || || || || ||
consistent Wi-Fi coverage across the entire campus. To achieve this, a site survey and heat map
|| || || || || || || || || || || || || || || ||
creation will guide the placement and configuration of wireless access points (WAPs). Which of
|| || || || || || || || || || || || || ||
the following would MOST accurately represent the correct actions based on the survey results? -
|| || || || || || || || || || || || || || ||
✔✔Place WAPs in areas indicated weak in the heat map and increase transmit power to the
|| || || || || || || || || || || || || || || ||
highest in all devices, while avoiding unnecessary overlap.
|| || || || || || ||
A cybersecurity team has discovered an unauthorized alteration in the endpoint configuration of
|| || || || || || || || || || || || ||
several workstations within the organization, resulting in a malware infection. As part of the
|| || || || || || || || || || || || || ||
response strategy, the team must select a specific mitigation technique to prevent similar incidents
|| || || || || || || || || || || || ||
in the future. Which of the following is the MOST suitable approach to undertake? -
|| || || || || || || || || || || || || || || ||
✔✔Implement a stricter Group Policy || || || ||
A company's IT department has noticed irregularities in network usage and resource allocation.
|| || || || || || || || || || || || ||
Which tool would be MOST beneficial in collecting the metadata and statistics from the network
|| || || || || || || || || || || || || || ||
traffic? - ✔✔Flow collector || || ||
