SY0-301 Practice Questions

Which of the following is the BEST concept to maintain required but non-critical server availability?

Prior to leaving for an extended vacation, Joe uses his mobile phone to take a picture of his family in the house living room. Joe posts the picture on a popular social media site...

Which of the following technical controls helps to prevent Smartphones from connecting to a corporate network?

The Chief Risk Officer is concerned about the new employee BYOD device policy and has requested the security department implement mobile security controls to protect corporate data...

A way to assure data at-rest is secure even in the event of loss or theft is to use:

Which of the following would prevent a user from installing a program on a company-owned mobile device?

Which of the following can be used to maintain a higher level of security in a SAN by allowing isolation of mis-configurations or faults?

The act of magnetically erasing all of the data on a disk is known as:

LDAP and Kerberos are commonly used for which of the following?

A recent audit has revealed weaknesses in the process of deploying new servers and network devices. Which of the following practices could be used to increase the security posture...

Joe, a network security engineer, has visibility to network traffic through network monitoring tools. However, he's concerned that a disgruntled employee may be targeting a server...

Ann, a security administrator, wishes to replace their RADIUS authentication with a more secure protocol, which can utilize EAP. Which of the following would BEST fit her objective...

Joe analyzed the following log and determined the security team should implement which of the following as a mitigation method against further attempts? Host 192.168.1.123 [00:00:0...

A computer supply company is located in a building with three wireless networks. The system security team implemented a quarterly security scan and saw the following. Which of the...

Joe, a technician at the local power plant, notices that several turbines had ramp up in cycles during the week. Further investigation by the system engineering team determined tha...

A system administrator has been instructed by the head of security to protect their data at-rest. Which of the following would provide the strongest protection?

An Information Systems Security Officer (ISSO) has been placed in charge of a classified peer-to- peer network that cannot connect to the Internet. The ISSO can update the antiviru...

Ann has taken over as the new head of the IT department. One of her first assignments was to implement AAA in preparation for the company's new telecommuting policy. When she takes...

A group policy requires users in an organization to use strong passwords that must be changed every 15 days. Joe and Ann were hired 16 days ago. When Joe logs into the network, he...

A new web server has been provisioned at a third party hosting provider for processing credit card transactions. The security administrator runs the netstat command on the server a...

Several employee accounts appear to have been cracked by an attacker. Which of the following should the security administrator implement to mitigate password cracking attacks? (Sel...

Human Resources suspects an employee is accessing the employee salary database. The administrator is asked to find out who it is. In order to complete this task, which of the follo...

A cafe provides laptops for Internet access to their customers. The cafe is located in the center corridor of a busy shopping mall. The company has experienced several laptop theft...

An auditor's report discovered several accounts with no activity for over 60 days. The accounts were later identified as contractors' accounts who would be returning in three month...

A company hired Joe, an accountant. The IT administrator will need to create a new account for Joe. The company uses groups for ease of management and administration of user accoun...

Ann, the network administrator, has learned from the helpdesk that employees are accessing the wireless network without entering their domain credentials upon connection. Once the...

Ann works at a small company and she is concerned that there is no oversight in the finance department; specifically, that Joe writes, signs and distributes paychecks, as well as o...

A hospital IT department wanted to secure its doctor's tablets. The IT department wants operating system level security and the ability to secure the data from alteration. Which of...

Customers' credit card information was stolen from a popular video streaming company. A security consultant determined that the information was stolen, while in transit, from the g...

A new intern was assigned to the system engineering department, which consists of the system architect and system software developer's teams. These two teams have separate privileg...

A system security analyst using an enterprise monitoring tool notices an unknown internal host exfiltrating files to several foreign IP addresses. Which of the following would be a...

One of the system administrators at a company is assigned to maintain a secure computer lab. The administrator has rights to configure machines, install software, and perform user...

Which of the following common access control models is commonly used on systems to ensure a "need to know" based on classification levels?

A company's security administrator wants to manage PKI for internal systems to help reduce costs. Which of the following is the FIRST step the security administrator should take?

Which of the following is the BEST approach to perform risk mitigation of user access control rights?

A network consists of various remote sites that connect back to two main locations. Pete, the security administrator, needs to block TELNET access into the network. Which of the fo...

Pete, a security administrator, is informed that people from the HR department should not have access to the accounting department's server, and the accounting department should no...

Which of the following is BEST utilized to actively test security controls on a particular system?

Pete, an employee, attempts to visit a popular social networking site but is blocked. Instead, a page is displayed notifying him that this site cannot be visited. Which of the foll...

Which of the following has serious security implications for large organizations and can potentially allow an attacker to capture conversations?

Which of the following is a step in deploying a WPA2-Enterprise wireless network?

Upper management decides which risk to mitigate based on cost. This is an example of:

Matt, a security administrator, wants to ensure that the message he is sending does not get intercepted or modified in transit. This concern relates to which of the following conce...

Which of the following should be used when a business needs a block cipher with minimal key size for internal encryption?

Which of the following best practices makes a wireless network more difficult to find?

Sara, a user, downloads a keygen to install pirated software. After running the keygen, system performance is extremely slow and numerous antivirus alerts are displayed. Which of t...

The use of social networking sites introduces the risk of:

Which the following flags are used to establish a TCP connection? (Select TWO).

Which of the following describes the process of removing unnecessary accounts and services from an application to reduce risk exposure?

Which of the following MUST Matt, a security administrator, implement to verify both the integrity and authenticity of a message while requiring a shared secret?