SY0-501 Exam Questions

Which of the following locations contain the MOST volatile data?

Ann, a customer, is reporting that several important files are missing from her workstation. She recently received communication from an unknown party who is requesting funds to re...

Every morning, a systems administrator monitors failed login attempts on the company's log management server. The administrator notices the DBAdmin account has five failed username...

Joe, a user, has been trying to send Ann, a different user, an encrypted document via email. Ann has not received the attachment but is able to receive the header information. Whic...

A systems administrator is configuring a system that uses data classification labels. Which of the following will the administrator need to implement to enforce access control?

An analyst is using a vulnerability scanner to look for common security misconfigurations on devices. Which of the following might be identified by the scanner? (Select TWO).

A security analyst is reviewing patches on servers. One of the servers is reporting the following error message in the WSUS management console: The computer has not reported status...

Two users must encrypt and transmit large amount of data between them. Which of the following should they use to encrypt and transmit the data?

A security administrator is reviewing the following PowerShell script referenced in the Task Scheduler on a database server: $members = GetADGroupMemeber -Identity "Domain Admins"...

A bank is experiencing a DoS attack against an application designed to handle 500IP-based sessions. in addition, the perimeter router can only handle 1Gbps of traffic. Which of the...

A malicious system continuously sends an extremely large number of SYN packets to a server. Which of the following BEST describes the resulting effect?

A systems administrator is deploying a new mission essential server into a virtual environment. Which of the following is BEST mitigated by the environment's rapid elasticity chara...

Which of the following is the proper order for logging a user into a system from the first step to the last step?

A company stores highly sensitive data files used by the accounting system on a server file share. The accounting system uses a service account named accounting-svc to access the f...

A bank uses a wireless network to transmit credit card purchases to a billing system. Which of the following would be MOST appropriate to protect credit card information from being...

Joe, a salesman, was assigned to a new project that requires him to travel to a client site. While waiting for a flight, Joe decides to connect to the airport wireless network with...

A help desk technician receives a phone call from an individual claiming to be an employee of the organization and requesting assistance to access a locked account. The help desk t...

Confidential emails from an organization were posted to a website without the organization's knowledge. Upon investigation, it was determined that the emails were obtained from an...

A company wants to implement an access management solution that allows employees to use the same usernames and passwords for multiple applications without having to keep multiple c...

An external auditor visits the human resources department and performs a physical security assessment. The auditor observed documents on printers that are unclaimed. A closer look...

Which of the following authentication concepts is a gait analysis MOST closely associated?

Which of the following metrics are used to calculate the SLE? (Select TWO)

Due to regulatory requirements, server in a global organization must use time synchronization. Which of the following represents the MOST secure method of time synchronization?

When sending messages using symmetric encryption, which of the following must happen FIRST?

Which of the following scenarios BEST describes an implementation of non-repudiation?

An office manager found a folder that included documents with various types of data relating to corporate clients. The office manager notified the data included dates of birth, add...

Which of the following is an asymmetric function that generates a new and separate key every time it runs?

Which of the following would be considered multifactor authentication?

Users report the following message appear when browsing to the company's secure site: This website Which of the following actions should a security analyst take to resolve these ca...

A user receives an email from ISP indicating malicious traffic coming from the user's home network is detected. The traffic appears to be Linux-based, and it is targeting a website...

A security auditor is testing perimeter security in a building that is protected by badge readers. Which of the following types of attacks would MOST likely gain access?

A department head at a university resigned on the first day of spring semester. It was subsequently determined that the department head deleted numerous files and directories from...

An organization wants to upgrade its enterprise-wide desktop computer solution. The organization currently has 500 PCs active on the network. the Chief Information Security Officer...

An organization has implemented an IPSec VPN access for remote users. Which of the following IPSec modes would be the MOST secure for this organization to implement?

A security engineer is configuring a wireless network with EAP-TLS. Which of the following activities is a requirement for this configuration?

Several workstations on a network are found to be on OS versions that are vulnerable to a specific attack. Which of the following is considered to be a corrective action to combat...

An external contractor, who has not been given information about the software or network architecture, is conducting a penetration test. Which of the following BEST describes the t...

A security analyst has set up a network tap to monitor network traffic for vulnerabilities. Which of the following techniques would BEST describe the approach the analyst has taken...

Due to regulatory requirements, a security analyst must implement full drive encryption on a Windows file server. Which of the following should the analyst implement on the system...

A company's loss control department identifies theft as a recurring loss type over the past year. Based on the department's report, the Chief Information Officer (CIO) wants to det...

Which of the following penetration testing concepts is being used when an attacker uses public Internet databases to enumerate and learn more about a target?

While performing a penetration test, the technicians want their efforts to go unnoticed for as long as possible while they gather useful data about the network they are assessing....

A security analyst captures forensic evidence from a potentially compromised system for further investigation. The evidence is documented and securely stored to FIRST:

A security analyst is investigating a security breach. Upon inspection of the audit an access logs, the analyst notices the host was accessed and the /etc/passwd file was modified...

A systems administrator wants to provide balance between the security of a wireless network and usability. The administrator is concerned with wireless encryption compatibility of...

A company recently replaced its unsecure email server with a cloud-based email and collaboration solution that is managed and insured by a third party. Which of the following actio...

A security administrator is reviewing the following network capture: Which of the following malware is MOST likely to generate the above information?

A network administrator adds an ACL to allow only HTTPS connections form host 192.168.2.3 to web server 192.168.5.2. After applying the rule, the host is unable to access the serve...

A datacenter recently experienced a breach. When access was gained, an RF device was used to access an air-gapped and locked server rack. Which of the following would BEST prevent...

A security analyst is working on a project that requires the implementation of a stream cipher. Which of the following should the analyst use?