Free CompTIA Security+ Certification Exam SY0-701 Exam Practice Test

Which of the following must be considered when designing a high-availability network? (Select two).

• Ease of recovery
• Ability to patch
• Physical isolation
• Responsiveness
• Attack surface
• Extensible authentication

Which of the following would be the best ways to ensure only authorized personnel can access a secure facility? (Select two).

• Fencing
• Video surveillance
• Badge access
• Access control vestibule
• Sign-in sheet
• Sensor

Security controls in a data center are being reviewed to ensure data is properly protected and thathuman life considerations are included. Which of the following best describes how the controls should be set up?

• Remote access points should fail closed.
• Logging controls should fail open.
• Safety controls should fail open.
• Logical security controls should fail closed.

Which of the following should a systems administrator use to ensure an easy deployment of resources within the cloud provider?

• Software as a service
• Infrastructure as code
• Internet of Things
• Software-defined networking

A technician is opening ports on a firewall for a new system being deployed and supported by a SaaS provider. Which of the following is a risk in the new system?

• Default credentials
• Non-segmented network
• Supply chain vendor
• Vulnerable software

A security administrator would like to protect data on employees’ laptops. Which of the following encryption techniques should the security administrator use?

• Partition
• Asymmetric
• Full disk
• Database

A network manager wants to protect the company's VPN by implementing multifactor authentication that uses:. Something you know. Something you have. Something you areWhich of the following would accomplish the manager's goal?

• Domain name, PKI, GeolP lookup
• VPN IP address, company ID, facial structure
• Password, authentication token, thumbprint
• Company URL, TLS certificate, home address

A company's marketing department collects, modifies, and stores sensitive customer data. The infrastructure team is responsible for securing the data while in transit and at rest. Which of the following data roles describes the customer?

• Processor
• Custodian
• Subject
• Owner

A technician wants to improve the situational and environmental awareness of existing users as they transition from remote to in-office work. Which of the following is the best option?

• Send out periodic security reminders.
• Update the content of new hire documentation.
• Modify the content of recurring training. D Implement a phishing campaign

A security operations center determines that the malicious activity detected on a server is normal. Which of the following activities describes the act of ignoring detected activity in the future?

• Tuning
• Aggregating
• Quarantining
• Archiving