PT0-001 Question #192: Real Exam Question with Answer & Explanation

The correct answer is A: Social engineering testing. The correct answer is A, Social engineering testing. When the primary concern is employee security awareness, social engineering testing is the appropriate recommendation. Social engineering tests - such as phishing simulations, vishing (voice phishing) calls, or physical pretext

Engagement management

Question

A potential customer is looking to test the security of its network. One of the customer's primary concerns is the security awareness of its employees. Which type of test would you recommend that the company perform as part of the penetration test?

Options

ASocial engineering testing
BWireless testing
CNetwork testing
DWeb application testing

Explanation

The correct answer is A, Social engineering testing. When the primary concern is employee security awareness, social engineering testing is the appropriate recommendation. Social engineering tests - such as phishing simulations, vishing (voice phishing) calls, or physical pretexting - directly evaluate whether employees recognize and correctly respond to manipulation attempts by attackers. The other options target technical infrastructure: wireless testing (B) assesses Wi-Fi security, network testing (C) evaluates routers, firewalls, and hosts, and web application testing (D) looks for vulnerabilities in web apps. None of those measure the human element, which is the stated concern here.

Topics

#social engineering#security awareness#penetration test scope#employee testing

Community Discussion

No community discussion yet for this question.

Full PT0-001 Practice