SY0-301 Practice Questions

A third party application has the ability to maintain its own user accounts or it may use single sign- on. To use single sign-on, the application is requesting the following inform...

Power and data cables from the network center travel through the building's boiler room. Which of the following should be used to prevent data emanation?

Which of the following must a security administrator implement to isolate public facing servers from both the corporate network and the Internet?

Which of the following protocols provides fast, unreliable file transfer?

Which of the following digital certificate management practices will ensure that a lost certificate is not compromised?

Which of the following protocols operates at the HIGHEST level of the OSI model?

Joe, the system administrator, has been asked to calculate the Annual Loss Expectancy (ALE) for a $5,000 server, which often crashes. In the past year, the server has crashed 10 ti...

Jane, a security administrator, needs to implement a secure wireless authentication method that uses a remote RADIUS server for authentication. Which of the following is an authent...

Computer evidence at a crime scene is documented with a tag stating who had possession of the evidence at a given time. Which of the following does this illustrate?

Which of the following is being tested when a company's payroll server is powered off for eight hours?

A security manager must remain aware of the security posture of each system. Which of the following supports this requirement?

Deploying a wildcard certificate is one strategy to:

The security administrator needs to manage traffic on a layer 3 device to support FTP from a new remote site. Which of the following would need to be implemented?

A server with the IP address of 10.10.2.4 has been having intermittent connection issues. The logs show repeated connection attempts from the following IPs: 10.10.3.16 10.10.3.23 2...

Which of the following is true about input validation in a client-server architecture, when data integrity is critical to the organization?

Which of the following is BEST at blocking attacks and providing security at layer 7 of the OSI model?

Which of the following is BEST used to capture and analyze network traffic between hosts on the same network segment?

A datacenter requires that staff be able to identify whether or not items have been removed from the facility. Which of the following controls will allow the organization to provid...

A malicious person gained access to a datacenter by ripping the proximity badge reader off the wall near the datacenter entrance. This caused the electronic locks on the datacenter...

The concept of rendering data passing between two points over an IP based network impervious to all but the most sophisticated advanced persistent threats is BEST categorized as wh...

On Monday, all company employees report being unable to connect to the corporate wireless network, which uses 802.1x with PEAP. A technician verifies that no configuration changes...

Which of the following would BEST deter an attacker trying to brute force 4-digit PIN numbers to access an account at a bank teller machine?

An administrator discovers that many users have used their same passwords for years even though the network requires that the passwords be changed every six weeks. Which of the fol...

A recent audit has discovered that at the time of password expiration clients are able to recycle the previous credentials for authentication. Which of the following controls shoul...

A system administrator is configuring UNIX accounts to authenticate against an external server. The configuration file asks for the following information DC=ServerName and DC=COM....

In Kerberos, the Ticket Granting Ticket (TGT) is used for which of the following?

When considering a vendor-specific vulnerability in critical industrial control systems which of the following techniques supports availability?

During the information gathering stage of a deploying role-based access control model, which of the following information is MOST likely required?

The Chief Technical Officer (CTO) has been informed of a potential fraud committed by a database administrator performing several other job functions within the company. Which of t...

A recently installed application update caused a vital application to crash during the middle of the workday. The application remained down until a previous version could be reinst...

A company is about to release a very large patch to its customers. An administrator is required to test patch installations several times prior to distributing them to customer PCs...

An auditing team has found that passwords do not meet best business practices. Which of the following will MOST increase the security of the passwords? (Select TWO).

A vulnerability scan is reporting that patches are missing on a server. After a review, it is determined that the application requiring the patch does not exist on the operating sy...

Company A submitted a bid on a contract to do work for Company B via email. Company B was insistent that the bid did not come from Company A. Which of the following would have assu...

Ann, a sales manager, successfully connected her company-issued smartphone to the wireless network in her office without supplying a username/password combination. Upon disconnecti...

A network technician is on the phone with the system administration team. Power to the server room was lost and servers need to be restarted. The DNS services must be the first to...

A security administrator is reviewing the company's continuity plan. The plan specifies an RTO of six hours and RPO of two days. Which of the following is the plan describing?

The incident response team has received the following email message. From: [email protected] To: [email protected] Subject: Copyright infringement A copyright infringement...

A server dedicated to the storage and processing of sensitive information was compromised with a rootkit and sensitive data was exfiltrated. Which of the following incident respons...

Which of the following describes a type of malware which is difficult to reverse engineer in a virtual lab?

Using a heuristic system to detect an anomaly in a computer's baseline, a system administrator was able to detect an attack even though the company signature based IDS and antiviru...

After copying a sensitive document from his desktop to a flash drive, Joe, a user, realizes that the document is no longer encrypted. Which of the following can a security technici...

A security administrator must implement a system to allow clients to securely negotiate encryption keys with the company's server over a public unencrypted communication channel. W...

Acme Corp has selectively outsourced proprietary business processes to ABC Services. Due to some technical issues, ABC services wants to send some of Acme Corp's debug data to a th...

An organization has introduced token-based authentication to system administrators due to risk of password compromise. The tokens have a set of numbers that automatically change ev...

A security technician at a small business is worried about the Layer 2 switches in the network suffering from a DoS style attack caused by staff incorrectly cabling network connect...

An administrator wants to establish a WiFi network using a high gain directional antenna with a narrow radiation pattern to connect two buildings separated by a very long distance....

An attacker used an undocumented and unknown application exploit to gain access to a file server. Which of the following BEST describes this type of attack?

Which of the following is an XML based open standard used in the exchange of authentication and authorization information between different parties?

Which of the following ports and protocol types must be opened on a host with a host- based firewall to allow incoming SFTP connections?