SY0-301 Practice Questions

Which of the following is an advantage of implementing individual file encryption on a hard drive which already deploys full disk encryption?

An IT director is looking to reduce the footprint of their company's server environment. They have decided to move several internally developed software applications to an alternat...

A forensic analyst is reviewing electronic evidence after a robbery. Security cameras installed at the site were facing the wrong direction to capture the incident. The analyst ens...

A security administrator wishes to change their wireless network so that IPSec is built into the protocol and NAT is no longer required for address range extension. Which of the fo...

The network administrator is responsible for promoting code to applications on a DMZ web server. Which of the following processes is being followed to ensure application integrity?

An IT auditor tests an application as an authenticated user. This is an example of which of the following types of testing?

The manager has a need to secure physical documents every night, since the company began enforcing the clean desk policy. The BEST solution would include: (Select TWO).

Which of the following is an important implementation consideration when deploying a wireless network that uses a shared password?

Which of the following would satisfy wireless network implementation requirements to use mutual authentication and usernames and passwords?

Some customers have reported receiving an untrusted certificate warning when visiting the company's website. The administrator ensures that the certificate is not expired and that...

A security analyst needs to ensure all external traffic is able to access the company's front-end servers but protect all access to internal resources. Which of the following netwo...

A company's business model was changed to provide more web presence and now its ERM software is no longer able to support the security needs of the company. The current data center...

Which of the following network devices is used to analyze traffic between various network interfaces?

Layer 7 devices used to prevent specific types of html tags are called:

A network administrator needs to provide daily network usage reports on all layer 3 devices without compromising any data while gathering the information. Which of the following wo...

A security administrator has been tasked to ensure access to all network equipment is controlled by a central server such as TACACS+. This type of implementation supports which of...

Company A sends a PGP encrypted file to company B. If company A used company B's public key to encrypt the file, which of the following should be used to decrypt data at company B?

Which of the following types of authentication solutions use tickets to provide access to various resources from a central location?

A corporation is looking to expand their data center but has run out of physical space in which to store hardware. Which of the following would offer the ability to expand while ke...

After viewing wireless traffic, an attacker notices the following networks are being broadcasted by local access points: Corpnet Coffeeshop FreePublicWifi Using this information th...

Which of the following concepts is enforced by certifying that email communications have been sent by who the message says it has been sent by?

After a recent breach, the security administrator performs a wireless survey of the corporate network. The security administrator notices a problem with the following output: MAC S...

Input validation is an important security defense because it:

In order to maintain oversight of a third party service provider, the company is going to implement a Governance, Risk, and Compliance (GRC) system. This system is promising to pro...

A recent audit of a company's identity management system shows that 30% of active accounts belong to people no longer with the firm. Which of the following should be performed to h...

The Chief Information Officer (CIO) has mandated web based Customer Relationship Management (CRM) business functions be moved offshore to reduce cost, reduce IT overheads, and impr...

Which of the following provides the BEST application availability and is easily expanded as demand grows?

An administrator connects VoIP phones to the same switch as the network PCs and printers. Which of the following would provide the BEST logical separation of these three device typ...

Which of the following wireless security measures can an attacker defeat by spoofing certain properties of their network interface card?

Which of the following provides additional encryption strength by repeating the encryption process with additional keys?

Which of the following BEST describes part of the PKI process?

Two members of the finance department have access to sensitive information. The company is concerned they may work together to steal information. Which of the following controls co...

A system administrator attempts to ping a hostname and the response is 2001:4860:0:2001::68. Which of the following replies has the administrator received?

Which of the following allows a network administrator to implement an access control policy based on individual user characteristics and NOT on job function?

Which of the following is a best practice when a mistake is made during a forensics examination?

Which of the following allows lower level domains to access resources in a separate Public Key Infrastructure?

Which of the following offers the LEAST secure encryption capabilities?

Which of the following network architecture concepts is used to securely isolate at the boundary between networks?

Datacenter access is controlled with proximity badges that record all entries and exits from the datacenter. The access records are used to identify which staff members accessed th...

Elastic cloud computing environments often reuse the same physical hardware for multiple customers over time as virtual machines are instantiated and deleted. This has important im...

When implementing fire suppression controls in a datacenter it is important to:

Vendors typically ship software applications with security settings disabled by default to ensure a wide range of interoperability with other applications and devices. A security a...

A technician is deploying virtual machines for multiple customers on a single physical host to reduce power consumption in a data center. Which of the following should be recommend...

Mandatory vacations are a security control which can be used to uncover which of the following?

Each server on a subnet is configured to only allow SSH access from the administrator's workstation. Which of the following BEST describes this implementation?

During a security assessment, an administrator wishes to see which services are running on a remote server. Which of the following should the administrator use?

In which of the following categories would creating a corporate privacy policy, drafting acceptable use policies, and group based access control be classified?

Disabling unnecessary services, restricting administrative access, and enabling auditing controls on a server are forms of which of the following?

A system administrator has noticed vulnerability on a high impact production server. A recent update was made available by the vendor that addresses the vulnerability but requires...

Which of the following services are used to support authentication services for several local devices from a central location without the use of tokens?