SY0-701 Exam Questions
1,057 real SY0-701 exam questions with expert-verified answers and explanations. Page 11 of 22.
- Question #514Security program management and oversight
Which of the following is the most relevant reason a DPO would develop a data inventory?
- Question #515General security concepts
Which of the following cryptographic solutions protects data at rest?
- Question #516Threats, vulnerabilities, and mitigations
Which of the following should an organization use to protect its environment from external attacks conducted by an unauthorized hacker?
- Question #517Threats, vulnerabilities, and mitigations
Which of the following would enable a data center to remain operational through a multiday power outage?
- Question #518General security concepts
A company installed cameras and added signs to alert visitors that they are being recorded. Which of the following controls did the company implement? (Choose two.)
Security controlsDeterrent controlsDetective controlsPhysical security - Question #519Security architecture
Which of the following is the best way to securely store an encryption key for a data set in a manner that allows multiple entities to access the key when needed?
- Question #520General security concepts
For which of the following reasons would a systems administrator leverage a 3DES hash from an installer file that is posted on a vendor's website?
- Question #521Security program management and oversight
After failing an audit twice, an organization has been ordered by a government regulatory agency to pay fines. Which of the following causes this action?
ComplianceRegulatory requirementsAuditingGovernance - Question #522Security operations
Which of the following activities is included in the post-incident review phase?
Incident responsePost-incident reviewRoot cause analysisIncident management - Question #523Threats, vulnerabilities, and mitigations
Which of the following attacks exploits a potential vulnerability as a result of direct access to a system using weak cryptographic algorithms?
- Question #524General security concepts
Which of the following is a preventive physical security control?
Physical securityPreventive controlsSecurity controls - Question #525Security operations
Which of the following is most likely to be used as a just-in-time reference document within a security operations center?
Security Operations CenterIncident ResponsePlaybooksOperational procedures - Question #526Security architecture
A security engineer configured a remote access VPN. The remote access VPN allows end users to connect to the network by using an agent that is installed on the endpoint, which esta...
VPNIPSecNetwork protocolsRemote access - Question #527Security operations
Executives at a company are concerned about employees accessing systems and information about sensitive company projects unrelated to the employees' normal job duties. Which of the...
User Behavior Analytics (UBA)Insider ThreatAnomalous Activity DetectionSecurity Monitoring - Question #528Security program management and oversight
Several customers want an organization to verify its security controls are operating effectively and have requested an independent opinion. Which of the following is the most effic...
Security assuranceCompliance reportingThird-party auditsAttestation reports - Question #529Security operations
A university employee logged on to the academic server and attempted to guess the system administrators' log-in credentials. Which of the following security measures should the uni...
Security loggingMonitoringInsider threatsAccess control - Question #530Security program management and oversight
Which of the following consequences would a retail chain most likely face from customers in the event the retailer is non-compliant with PCI DSS?
PCI DSSComplianceReputational damageBusiness impact - Question #531Threats, vulnerabilities, and mitigations
A security analyst is reviewing logs and discovers the following: Which of the following should be used to best mitigate this type of attack?
- Question #532Security operations
An administrator is installing an SSL certificate on a new system. During testing, errors indicate that the certificate is not trusted. The administrator has verified with the issu...
SSL/TLSPKICertificate ManagementTroubleshooting - Question #533Threats, vulnerabilities, and mitigations
An employee emailed a new systems administrator a malicious web link and convinced the administrator to change the email server's password. The employee used this access to remove...
PhishingSocial EngineeringSecurity Awareness - Question #534Security program management and oversight
A new security regulation was announced that will take effect in the coming year. A company must comply with it to remain in business. Which of the following activities should the...
ComplianceGap AnalysisRegulationsSecurity Program Management - Question #535Threats, vulnerabilities, and mitigations
An accountant is transferring information to a bank over FTP. Which of the following mitigations should the accountant use to protect the confidentiality of the data?
EncryptionConfidentialityData in transitSecurity controls - Question #536Security architecture
An organization has recently decided to implement SSO. The requirements are to leverage access tokens and focus on application authorization rather than user authentication. Which...
SSOOAuthAccess TokensApplication Authorization - Question #537Threats, Vulnerabilities, and Mitigations
Which of the following would most likely be used by attackers to perform credential harvesting?
Social engineeringCredential harvestingAttack techniques - Question #538Security operations
A security engineer would like to enhance the use of automation and orchestration within the SIEM. Which of the following would be the primary benefit of this enhancement?
SIEMAutomationOrchestrationSecurity Operations - Question #539Security operations
A systems administrator receives an alert that a company's internal file server is very slow and is only working intermittently. The systems administrator reviews the server manage...
Resource monitoringServer performanceSystem availabilityTroubleshooting - Question #540General security concepts
Which of the following data states applies to data that is being actively processed by a database server?
Data statesData protectionSecurity fundamentals - Question #541Security architecture
Which of the following architectures is most suitable to provide redundancy for critical business processes?
RedundancyCloud-nativeHigh AvailabilityArchitecture - Question #542Threats, vulnerabilities, and mitigations
While reviewing logs, a security administrator identifies the following code: Which of the following best describes the vulnerability being exploited?
- Question #543Security architecture
An organization issued new laptops to all employees and wants to provide web filtering both in and out of the office without configuring additional access to the network. Which of...
Web filteringEndpoint securityAgent-based securityRemote access security - Question #544Threats, vulnerabilities, and mitigations
Which of the following provides the best protection against unwanted or insecure communications to and from a device?
Host-based firewallEndpoint securityNetwork securityTraffic filtering - Question #545Security program management and oversight
An employee who was working remotely lost a mobile device containing company data. Which of the following provides the best solution to prevent future data loss?
- Question #546Security program management and oversight
An IT administrator needs to ensure data retention standards are implemented on an enterprise application. Which of the following describes the administrator's role?
Data retentionRoles and responsibilitiesData custodianInformation governance - Question #547Threats, vulnerabilities, and mitigations
A company plans to secure its systems by: - Preventing users from sending sensitive data over corporate email - Restricting access to potentially harmful websites Which of the foll...
DLPDNS FilteringWeb SecurityData Protection - Question #548Threats, vulnerabilities, and mitigations
A company processes and stores sensitive data on its own systems. Which of the following steps should the company take first to ensure compliance with privacy regulations?
Privacy RegulationsAccess ControlData EncryptionData Protection - Question #549General security concepts
Which of the following cryptographic methods is preferred for securing communications with limited computing resources?
CryptographySymmetric EncryptionResource Efficiency - Question #550Security architecture
A network administrator wants to ensure that network traffic is highly secure while in transit. Which of the following actions best describes the actions the network administrator...
Data in transitEncryptionTLSNetwork security - Question #551Security operations
Which of the following definitions best describes the concept of log correlation?
Log correlationSecurity operationsThreat detectionEvent analysis - Question #552Security architecture
An enterprise security team is researching a new security architecture to better protect the company's networks and applications against the latest cyberthreats. The company has a...
SASESecurity ArchitectureRemote Workforce SecurityCloud Security - Question #553Threats, vulnerabilities, and mitigations
Which of the following allows an exploit to go undetected by the operating system?
- Question #554Threats, vulnerabilities, and mitigations
A malicious insider from the marketing team alters records and transfers company funds to a personal account. Which of the following methods would be the best way to secure company...
- Question #555Security program management and oversight
An organization is required to provide assurance that its controls are properly designed and operating effectively. Which of the following reports will best achieve the objective?
- Question #556Security architecture
A systems administrator successfully configures VPN access to a cloud environment. Which of the following capabilities should the administrator use to best facilitate remote admini...
- Question #557Threats, vulnerabilities, and mitigations
An audit reveals that cardholder database logs are exposing account numbers inappropriately. Which of the following mechanisms would help limit the impact of this error?
Data MaskingSensitive Data ProtectionLog Security - Question #558Threats, vulnerabilities, and mitigations
A security analyst attempts to start a company's database server. When the server starts, the analyst receives an error message indicating the database server did not pass authenti...
MITRE ATT&CKContainer/VM EscapeNetwork Traffic RedirectionDatabase Security - Question #559
A penetration tester enters an office building at the same time as a group of employees despite not having an access badge. Which of the following attack types is the penetration t...
- Question #560Security operations
Which of the following enables the ability to receive a consolidated report from different devices on the network?
SIEMSecurity MonitoringLog ManagementEvent Correlation - Question #561Threats, vulnerabilities, and mitigations
An organization needs to monitor its users' activities in order to prevent insider threats. Which of the following solutions would help the organization achieve this goal?
Behavioral analyticsInsider threatsUser activity monitoringThreat mitigation - Question #562Threats, vulnerabilities, and mitigations
A customer of a large company receives a phone call from someone claiming to work for the company and asking for the customer's credit card information. The customer sees the calle...
Social engineeringVishingCaller ID spoofingThreats - Question #563Security operations
A security analyst is reviewing logs to identify the destination of command-and-control traffic originating from a compromised device within the on-premises network. Which of the f...
Security LoggingFirewallCommand and ControlIncident Response