Browse Exams Pricing

ExamsSY0-701Questions

SY0-701 Exam Questions

1,057 real SY0-701 exam questions with expert-verified answers and explanations. Page 12 of 22.

Question #564General security concepts
When trying to access an internal website, an employee reports that a prompt displays, stating that the site is insecure. Which of the following certificate types is the site most...
CertificatesSelf-signed certificatesPKITrust models
Question #565Security operations
Which of the following would most likely be deployed to obtain and analyze attacker activity and techniques?
HoneypotsThreat IntelligenceAttacker AnalysisSecurity Tools
Question #566Security operations
Which of the following objectives is best achieved by a tabletop exercise?
Tabletop exercisesIncident responseSecurity training
Question #567Security Operations
The private key for a website was stolen, and a new certificate has been issued. Which of the following needs to be updated next?
Certificate RevocationPKICRLIncident Response
Question #568General security concepts
Which of the following organizational documents is most often used to establish and communicate expectations associated with integrity and ethical behavior within an organization?
Organizational policiesAUP (Acceptable Use Policy)Ethical behaviorSecurity awareness
Question #569Security program management and oversight
Which of the following explains how to determine the global regulations that data is subject to regardless of the country where the data is stored?
Data sovereigntyGlobal regulationsData governanceLegal compliance
Question #570Threats, vulnerabilities, and mitigations
An organization's web servers host an online ordering system. The organization discovers that the servers are vulnerable to a malicious JavaScript injection, which could allow atta...
Web Application SecurityXSS/Injection MitigationPatch ManagementWeb Application Firewall (WAF)
Question #571Security operations
Which of the following tools is best for logging and monitoring in a cloud environment?
SIEMLoggingMonitoringCloud security
Question #572Threats, vulnerabilities, and mitigations
During a SQL update of a database, a temporary field that was created was replaced by an attacker in order to allow access to the system. Which of the following best describes this...
Malicious updateDatabase securityAttack vectorsVulnerability exploitation
Question #573
Which of the following elements of digital forensics should a company use if it needs to ensure the integrity of evidence?
Question #574Security operations
A company suffered a critical incident where 30GB of data was exfiltrated from the corporate network. Which of the following actions is the most efficient way to identify where the...
Incident ResponseLog AnalysisData ExfiltrationNetwork Forensics
Question #575Security operations
A security analyst wants to better understand the behavior of users and devices in order to gain visibility into potential malicious activities. The analyst needs a control to dete...
Endpoint Detection and ResponseBehavioral AnalysisAnomaly DetectionThreat Detection
Question #576Security program management and oversight
A legal department must maintain a backup from all devices that have been shredded and recycled by a third party. Which of the following best describes this requirement?
Data retentionLegal complianceData backupInformation lifecycle
Question #577Threats, vulnerabilities, and mitigations
Which of the following can be used to compromise a system that is running an RTOS?
RTOS securityMemory injectionVulnerability exploitationEmbedded systems
Question #578Threats, vulnerabilities, and mitigations
A security architect wants to prevent employees from receiving malicious attachments by email. Which of the following functions should the chosen solution do?
Email SecurityMalware PreventionContent FilteringEmail Gateway
Question #579Security operations
Which of the following activities is the first stage in the incident response process?
Incident ResponseIncident Response ProcessDetectionSecurity Operations
Question #580Threats, vulnerabilities, and mitigations
Which of the following is the main consideration when a legacy system that is a critical part of a company's infrastructure cannot be replaced?
Legacy systemsSingle point of failureCritical infrastructureRisk identification
Question #581Threats, vulnerabilities, and mitigations
Which of the following is a compensating control for providing user access to a high-risk website?
Compensating controlsRisk mitigationFirewall securityThreat prevention
Question #582Threats, vulnerabilities, and mitigations
An organization is implementing a COPE mobile device management policy. Which of the following should the organization include in the COPE policy? (Choose two.)
COPE PolicyMobile Device ManagementData ProtectionRemote Wipe
Question #583Threats, vulnerabilities, and mitigations
A security administrator observed the following in a web server log while investigating an incident: "GET ../../../../etc/passwd" Which of the following attacks did the security ad...
Directory traversalWeb application attackInformation disclosureVulnerability identification
Question #584Security operations
Which of the following should a security team do first before a new web server goes live?
Server hardeningWeb server securitySecure configurationPre-deployment security
Question #585Security operations
Which of the following techniques can be used to sanitize the data contained on a hard drive while allowing for the hard drive to be repurposed?
Data SanitizationHard Drive DisposalData WipingMedia Management
Question #586Threats, vulnerabilities, and mitigations
An attacker submits a request containing unexpected characters in an attempt to gain unauthorized access to information within the underlying systems. Which of the following best d...
SQL injectionInjection attacksWeb vulnerabilitiesDatabase security
Question #587Security program management and oversight
A security analyst has determined that a security breach would have a financial impact of $15,000 and is expected to occur twice within a three-year period. Which of the following...
Risk managementAnnualized Loss Expectancy (ALE)Quantitative risk analysis
Question #588
A systems administrator discovers a system that is no longer receiving support from the vendor. However, this system and its environment are critical to running the business, canno...
Question #589Security operations
A company discovered its data was advertised for sale on the dark web. During the initial investigation, the company determined the data was proprietary data. Which of the followin...
Incident ResponseData BreachNotificationProprietary Data
Question #590Security architecture
Which of the following would be the best solution to deploy a low-cost standby site that includes hardware and internet access?
Disaster RecoveryBusiness ContinuityRecovery SitesWarm Site
Question #591General security concepts
An organization needs to determine how many employees are accessing the building each day in order to configure the proper access controls. Which of the following control types bes...
Security controlsControl typesDetective controlsPhysical security
Question #592Security architecture
An organization wants to implement a secure solution for remote users. The users handle sensitive PHI on a regular basis and need to access an internally developed corporate applic...
Remote accessMulti-Factor Authentication (MFA)Virtual Private Network (VPN)Data protection
Question #593Security architecture
A security consultant is working with a client that wants to physically isolate its secure systems. Which of the following best describes this architecture?
Air gapPhysical isolationSecurity architectureNetwork isolation
Question #594Security architecture
A company is in the process of migrating to cloud-based services. The company's IT department has limited resources for migration and ongoing support. Which of the following best m...
Cloud SecuritySASENetwork SecuritySecurity Architecture
Question #595Threats, vulnerabilities, and mitigations
An employee clicks a malicious link in an email that appears to be from the company's Chief Executive Officer. The employee's computer is infected with ransomware that encrypts the...
Security awareness trainingPhishingSocial engineeringRansomware prevention
Question #596Security architecture
Which of the following best describe the benefits of a microservices architecture when compared to a monolithic architecture? (Choose two.)
MicroservicesMonolithic architectureSystem architectureScalability
Question #597Threats, vulnerabilities, and mitigations
A user's workstation becomes unresponsive and displays a ransom note demanding payment to decrypt files. Before the attack, the user opened a resume they received in a message, bro...
Spear-phishingRansomwareAttack VectorsSocial Engineering
Question #598Threats, vulnerabilities, and mitigations
A penetration tester finds an unused Ethernet port during an on-site penetration test. Upon plugging a device into the unused port, the penetration tester notices that the machine...
Port securityNetwork access controlSwitch security
Question #599Threats, vulnerabilities, and mitigations
A security administrator documented the following records during an assessment of network services: Two weeks later, the administrator performed a log review and noticed the record...
DNS poisoningNetwork attacksThreatsDNS security
Question #600Threats, Vulnerabilities, and Mitigations
Which of the following is the primary reason why false negatives on a vulnerability scan should be a concern?
False negativesVulnerability scanningSecurity assessment
Question #601
A company is concerned about theft of client data from decommissioned laptops. Which of the following is the most cost-effective method to decrease this risk?
Question #602Security Architecture
A company that has a large IT operation is looking to better control, standardize, and lower the time required to build new servers. Which of the following architectures will best...
Infrastructure as Code (IaC)AutomationServer ProvisioningConfiguration Management
Question #603Threats, vulnerabilities, and mitigations
A government official receives a blank envelope containing photos and a note instructing the official to wire a large sum of money by midnight to prevent the photos from being leak...
BlackmailThreat ActorsCriminal IntentExtortion
Question #604Threats, vulnerabilities, and mitigations
Which of the following is the best security reason for closing service ports that are not needed?
Attack Surface ReductionPort SecurityVulnerability ManagementNetwork Hardening
Question #605Threats, vulnerabilities, and mitigations
A malicious actor conducted a brute-force attack on a company's web servers and eventually gained access to the company's customer information database. Which of the following is t...
Question #606Security Architecture
Which of the following options will provide the lowest RTO and RPO for a database?
Disaster RecoveryBusiness ContinuityRTORPO
Question #607Security program management and oversight
Due to a cyberattack, a company's IT systems were not operational for an extended period of time. The company wants to measure how quickly the systems must be restored in order to...
Recovery time objectiveBusiness continuityDisaster recoverySecurity metrics
Question #608Threats, vulnerabilities, and mitigations
Which of the following actors attacking an organization is the most likely to be motivated by personal beliefs?
Threat actorsMotivationHacktivismCybercrime
Question #609Security program management and oversight
Which of the following should a security team use to document persistent vulnerabilities with related recommendations?
Risk managementVulnerability managementSecurity documentationRisk register
Question #610Threats, vulnerabilities, and mitigations
An organization purchased a critical business application containing sensitive data. The organization would like to ensure that the application is not exploited by common data exfi...
WAFWeb Application SecurityData ExfiltrationSecurity Controls
Question #611Threats, vulnerabilities, and mitigations
A company is performing a risk assessment on new software the company plans to use. Which of the following should the company assess during this process?
Risk assessmentSoftware vulnerabilitiesVulnerability management
Question #612Threats, vulnerabilities, and mitigations
A malicious actor is trying to access sensitive financial information from a company's database by intercepting and reusing log-in credentials. Which of the following attacks is th...
On-path attackCredential theftNetwork interception
Question #613Security program management and oversight
A new employee accessed an unauthorized website. An investigation found that the employee violated the company's rules. Which of the following did the employee violate?
Acceptable Use PolicySecurity PoliciesPolicy Enforcement

PreviousPage 12 of 22Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.