compTIA Security+ SY0-601 Practice Questions and Answers 2025 – 2026(Verified)complete sol, Exams of Computer Communication Systems

compTIA Security+ SY0-601 Practice Questions and
Answers 2025 – 2026(Verified)complete sol, Exams of
Computer Communication Systems
QUESTION NO: 1

An achievement in providing worldwide Internet security was the signing of certificates
associated with which of the following protocols?

A. TCP/IP

B. SSL

C. SCP

D. SSH B

QUESTION NO: 2

A Chief Information Security Officer (CISO) wants to implement two-factor authentication within
the company. Which of the following would fulfill the CISO's requirements?

A. Username and password

B. Retina scan and fingerprint scan

C. USB token and PIN

D. Proximity badge and token C

QUESTION NO: 3

Which of the following can a security administrator implement on mobile devices that will help

prevent unwanted people from viewing the data if the device is left unattended?

A. Screen lock

B. Voice encryption

C. GPS tracking

D. Device encryption A

QUESTION NO: 4

Which of the following would a security administrator implement in order to identify a problem

1|Page

,between two systems that are not communicating properly?

A. Protocol analyzer

B. Baseline report

C. Risk assessment

D. Vulnerability scan A

QUESTION NO: 5

Which of the following can result in significant administrative overhead from incorrect
reporting?

A. Job rotation

B. Acceptable usage policies

C. False positives

D. Mandatory vacations C

QUESTION NO: 6

A security administrator wants to perform routine tests on the network during working hours
when

certain applications are being accessed by the most people. Which of the following would allow

the security administrator to test the lack of security controls for those applications with the
least

impact to the system?

A. Penetration test

B. Vulnerability scan

C. Load testing

D. Port scanner B

QUESTION NO: 7

Which of the following risk concepts requires an organization to determine the number of
failures

per year?


2|Page

,A. SLE

B. ALE

C. MTBF

D. Quantitative analysis B

QUESTION NO: 8

A system security analyst using an enterprise monitoring tool notices an unknown internal host

exfiltrating files to several foreign IP addresses. Which of the following would be an appropriate

mitigation technique?

A. Disabling unnecessary accounts

B. Rogue machine detection

C. Encrypting sensitive files

D. Implementing antivirus B

QUESTION NO: 9

Three of the primary security control types that can be implemented are.

A. Supervisory, subordinate, and peer.

B. Personal, procedural, and legal.

C. Operational, technical, and management.

D. Mandatory, discretionary, and permanent. C

QUESTION NO: 10

The helpdesk reports increased calls from clients reporting spikes in malware infections on their

systems. Which of the following phases of incident response is MOST appropriate as a FIRST

response?

A. Recovery

B. Follow-up

C. Validation

D. Identification

3|Page

, E. Eradication

F. Containment D

QUESTION NO: 11

Which of the following protocols operates at the HIGHEST level of the OSI model?

A. ICMP

B. IPSec

C. SCP

D. TCP C

QUESTION NO: 12

Joe, the system administrator, has been asked to calculate the Annual Loss Expectancy (ALE) for

a $5,000 server, which often crashes. In the past year, the server has crashed 10 times, requiring

a system reboot to recover with only 10% loss of data or function. Which of the following is the

ALE of this server?

A. $500

B. $5,000

C. $25,000

D. $50,000 B

QUESTION NO: 13

Which of the following should an administrator implement to research current attack
methodologies?

A. Design reviews

B. Honeypot

C. Vulnerability scanner

D. Code reviews B

QUESTION NO: 14

Which of the following can be implemented in hardware or software to protect a web server
from
4|Page