COMPTIA CERTMASTER CE SECURITY+
DOMAIN 1.0 GENERAL SECURITY CONCEPTS
ASSESSMENT 2026
A security analyst wishes to implement a system that enforces access decisions to
ensure that the privileges granted to an individual are appropriate for their role within the
organization. Which component is critical for enforcing these access control decisions? -
CORRECT ANSWER -B. Policy enforcement point
After encountering a cyber attack, an organization uses a monitoring solution that
automatically restarts services after it has detected the system has crashed. What type
of functional security control is the company implementing? - CORRECT
ANSWER -A. Corrective
A company installed a new locking cabinet in the computer room to hold extra flash
drives and other supplies. Which type of security control did the company configure? -
CORRECT ANSWER -A: Preventive
The organization's engineering team observes a system failure during the
implementation of new software patching. From a conceptual standpoint, what can the
team use to restore the system to its original state? - CORRECT ANSWER -D.
Backout plan
A cyber security analyst wants to reduce the attack surface for a computer that contains
top secret data. The analyst installs a central processing unit (CPU) that contains a
cryptoprocessor on the designated computer to accomplish this. What type of
, cryptoprocessor is the analyst installing? - CORRECT ANSWER -C. Trusted
Platform Module (TPM)
What is a crypto-processor on a removable PCIe adaptor card? - CORRECT
ANSWER -B. Hardware Security Module (HSM)
An organization's IT department is transitioning from an on-premise server system to a
cloud platform. Evaluating the security concepts tied to this transformation, what security
design paradigm requires any request to be authenticated before being allowed onto the
system? - CORRECT ANSWER -B. Zero trust
A corporation's IT department is in the process of implementing a new security
framework. This framework is designed to dynamically permit, ascertain, and manage
access to various digital resources, ensuring compliance with the organization's
established policies on who can access what, when, and under what conditions.
Considering the need for a system that integrates these considerations seamlessly into
the access control mechanism, which principle should the department prioritize for
incorporation? - CORRECT ANSWER -A. Policy-driven access control
An organization frequently implements changes, reconfigurations, and patches to
enhance its IT infrastructure's security and efficiency. The cybersecurity analyst must
carefully analyze dependencies between services, applications, and interfaces to avoid
unintended outages and disruptions during service restarts or downtime events. How
does understanding dependencies impact the change management process? (Select the
three best options.) - CORRECT ANSWER -A. Knowing dependencies helps
avoid unintended outages and disruptions during service restarts or downtime events.
DOMAIN 1.0 GENERAL SECURITY CONCEPTS
ASSESSMENT 2026
A security analyst wishes to implement a system that enforces access decisions to
ensure that the privileges granted to an individual are appropriate for their role within the
organization. Which component is critical for enforcing these access control decisions? -
CORRECT ANSWER -B. Policy enforcement point
After encountering a cyber attack, an organization uses a monitoring solution that
automatically restarts services after it has detected the system has crashed. What type
of functional security control is the company implementing? - CORRECT
ANSWER -A. Corrective
A company installed a new locking cabinet in the computer room to hold extra flash
drives and other supplies. Which type of security control did the company configure? -
CORRECT ANSWER -A: Preventive
The organization's engineering team observes a system failure during the
implementation of new software patching. From a conceptual standpoint, what can the
team use to restore the system to its original state? - CORRECT ANSWER -D.
Backout plan
A cyber security analyst wants to reduce the attack surface for a computer that contains
top secret data. The analyst installs a central processing unit (CPU) that contains a
cryptoprocessor on the designated computer to accomplish this. What type of
, cryptoprocessor is the analyst installing? - CORRECT ANSWER -C. Trusted
Platform Module (TPM)
What is a crypto-processor on a removable PCIe adaptor card? - CORRECT
ANSWER -B. Hardware Security Module (HSM)
An organization's IT department is transitioning from an on-premise server system to a
cloud platform. Evaluating the security concepts tied to this transformation, what security
design paradigm requires any request to be authenticated before being allowed onto the
system? - CORRECT ANSWER -B. Zero trust
A corporation's IT department is in the process of implementing a new security
framework. This framework is designed to dynamically permit, ascertain, and manage
access to various digital resources, ensuring compliance with the organization's
established policies on who can access what, when, and under what conditions.
Considering the need for a system that integrates these considerations seamlessly into
the access control mechanism, which principle should the department prioritize for
incorporation? - CORRECT ANSWER -A. Policy-driven access control
An organization frequently implements changes, reconfigurations, and patches to
enhance its IT infrastructure's security and efficiency. The cybersecurity analyst must
carefully analyze dependencies between services, applications, and interfaces to avoid
unintended outages and disruptions during service restarts or downtime events. How
does understanding dependencies impact the change management process? (Select the
three best options.) - CORRECT ANSWER -A. Knowing dependencies helps
avoid unintended outages and disruptions during service restarts or downtime events.
