SYO-501 Exam Practice Questions prepared by CompTIA Professionals
Use Valid New SYO-501 Questions - Top choice Help You Gain Success
Risk Management
Risk management involves a wide range of issues related to plans, procedures, and policies of organizational security. It also addresses the concepts of business analysis, risk management, incident response procedures, control types, disaster recovery, and data privacy and security issues. Within this domain, you will get to know more about agreement types, SLA, ISA, NDA, mission-essential functions, and threat assessment.
NEW QUESTION # 427
A company has migrated to two-factor authentication for accessing the corporate network, VPN, and SSO.
Several legacy applications cannot support multifactor authentication and must continue to use usernames and passwords. Which of the following should be implemented to ensure the legacy applications are as secure as possible while ensuring functionality? (Select TWO).
- A. Privileged accounts
- B. Password complexity requirements
- C. Password reuse restrictions
- D. Password recovery
- E. Account disablement
Answer: B,E
NEW QUESTION # 428
Which of the following is the proper way to quantify the total monetary damage resulting from an exploited
vulnerability?
- A. Calculate the ALE
- B. Calculate the ARO
- C. Calculate the MTBF
- D. Calculate the TCO
Answer: A
NEW QUESTION # 429
A security, who is analyzing the security of the company's web server, receives the following output:
Which of the following is the issue?
- A. Stored procedures
- B. Unencrypted credentials
- C. Code signing
- D. Access violations
Answer: B
NEW QUESTION # 430
An analyst receives an alert from the SIEM showing an IP address that does not belong to the assigned network can be seen sending packets to the wrong gateway.
Which of the following network devices is misconfigured and which of the following should be done to remediate the issue?
- A. Firewall; implement an ACL on the interface
- B. Switch; modify the access port to trunk port
- C. Proxy; add the correct transparent interface
- D. Router; place the correct subnet on the interface
Answer: D
Explanation:
Explanation
NEW QUESTION # 431
A salesperson often uses a USB drive to save and move files from a corporate laptop. The corporate laptop was recently updated, and now the files on the USB are read-only. Which of the following was recently added to the laptop?
- A. Antivirus software
- B. File integrity check
- C. HIPS
- D. DLP
Answer: D
NEW QUESTION # 432
An organization wishes to provide better security for its name resolution services. Which of the following
technologies BEST supports the deployment of DNSSEC at the organization?
- A. TLS
- B. LDAP
- C. TPM
- D. SSL
- E. PKI
Answer: A
NEW QUESTION # 433
A government contracting company issues smartphones to employees to enable access to corporate resources. Several employees will need to travel to a foreign country for business purposes and will require access to their phones. However, the company recently received intelligence that its intellectual property is highly desired by the same country's government. Which of the following MDM configurations would BEST reduce the disk of compromise while on foreign soil?
- A. Disable firmware OTA updates.
- B. Disable wipe.
- C. Disable push notification services.
- D. Disable location services.
Answer: D
NEW QUESTION # 434
A security analyst receives the following output
Which of the following MOST likely occurred to produce this output?
- A. The firewall prevented an incoming malware-infected file
- B. USB-OTG prevented a file from being uploaded to a mobile device
- C. The host DLP prevented a file from being moved off a computer
- D. The host-based firewall prevented an attack from a Trojan horse
Answer: C
NEW QUESTION # 435
A security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center. Drag and drop the applicable controls to each asset types?
Instructions: Controls can be used multiple times and not all placeholders need to be filled. When you have completed the simulation, please select the Done button to submit.
Answer:
Explanation:
Explanation
Company Manages Smart Phone
Screen Lock
Strong Password
Device Encryption
Remote Wipe
GPS Tracking
Pop-up blocker
Data Center Terminal Server
Cable Locks
Antivirus
Host Based Firewall
Proximity Reader
Sniffer
Mantrap
NEW QUESTION # 436
Drag and drop the correct protocol to its default port.
Answer:
Explanation:
Explanation:
FTP uses TCP port 21. Telnet uses port 23.
SSH uses TCP port 22.
All protocols encrypted by SSH, including SFTP, SHTTP, SCP, SExec, and slogin, also use TCP port 22. Secure Copy Protocol (SCP) is a secure file-transfer facility based on SSH and Remote Copy Protocol (RCP).
Secure FTP (SFTP) is a secured alternative to standard File Transfer Protocol (FTP). SMTP uses TCP port 25.
Port 69 is used by TFTP.
SNMP makes use of UDP ports 161 and 162.
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
NEW QUESTION # 437
An analysis of a threat actor, which has been active for several years, reveals the threat actor has high levels of funding, motivation, and sophistication. Which of the following types of threat actors does this BEST describe?
- A. Organized crime
- B. Insider
- C. Hacktivist
- D. Advanced persistent threat
Answer: D
NEW QUESTION # 438
While troubleshooting a client application connecting to the network, the security administrator notices the following error: Certificate is not valid. Which of the following is the BEST way to check if the digital certificate is valid?
- A. CRL
- B. IPSec
- C. CSR
- D. PKI
Answer: A
NEW QUESTION # 439
A small organization has implemented a rogue system detection solution. Which of the following BEST explains the organization's intent?
- A. To identify assets that are not authorized for use on the network
- B. To identify weak ciphers being used on the network
- C. To identify end-of-life systems still in use on the network
- D. To identify assets on the network that are subject to resources exhaustion
Answer: C
NEW QUESTION # 440
A company wants to host a publicity available server that performs the following functions:
Evaluates MX record lookup
Can perform authenticated requests for A and AAA records
Uses RRSIG
Which of the following should the company use to fulfill the above requirements?
- A. SFTP
- B. LDAPS
- C. DNSSEC
- D. nslookup
- E. dig
Answer: B
NEW QUESTION # 441
Which of the following specifically describes the exploitation of an interactive process to access otherwise restricted areas of the OS?
- A. Pivoting
- B. Buffer overflow
- C. Process affinity
Answer: A
NEW QUESTION # 442
A security analyst is reviewing the following packet capture of an attack directed at a company's server located in the DMZ:
Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?
- A. Deny IP from 192.168.1.10/32 to 0.0.0.0/0
- B. Deny TCP from 192.168.1.10 to 172.31.67.4
- C. DENY TCO From ANY to 172.31.64.4
- D. Deny UDP from 192.168.1.0/24 to 172.31.67.0/24
Answer: A
Explanation:
Explanation/Reference:
NEW QUESTION # 443
A security technician is configuring an access management system to track and record user actions. Which of the following functions should the technician configure?
- A. Authentication
- B. Accounting
- C. Authorization
- D. Identification
Answer: B
Explanation:
Explanation
NEW QUESTION # 444
......
SYO-501 Exam Practice Materials Collection: https://actualtests.realvalidexam.com/SYO-501-real-exam-dumps.html
