Browse Exams Pricing

ExamsSY0-701Questions

SY0-701 Exam Questions

1,057 real SY0-701 exam questions with expert-verified answers and explanations. Page 4 of 22.

Question #152Security program management and oversight
A newly appointed board member with cybersecurity knowledge wants the board of directors to receive a quarterly report detailing the number of incidents that impacted the organizat...
Question #153Threats, vulnerabilities, and mitigations
Which of the following are the most likely vectors for the unauthorized or unintentional inclusion of vulnerable code in a software company's final software releases? (Choose two).
Question #154Threats, vulnerabilities, and mitigations
Which of the following are common VoIP-associated vulnerabilities? (Choose two).
Question #155Threats, vulnerabilities, and mitigations
Which of the following is most likely associated with introducing vulnerabilities on a corporate network by the deployment of unapproved software?
Question #156Security program management and oversight
Local guidelines require that all information systems meet a minimum security baseline to be compliant. Which of the following can security administrators use to assess their syste...
Question #157Threats, vulnerabilities, and mitigations
166.18.75.6. However, over the past hour the SOC has received reports of the site's homepage pointing to 151.191.122.115. Which of the following is occurring?
Question #158Threats, vulnerabilities, and mitigations
An employee fell for a phishing scam, which allowed an attacker to gain access to a company PC. The attacker scraped the PC's memory to find other credentials. Without cracking the...
Question #159Threats, vulnerabilities, and mitigations
Which of the following is a common source of unintentional corporate credential leakage in cloud environments?
Question #160General security concepts
A certificate vendor notified a company that recently invalidated certificates may need to be updated. Which of the following mechanisms should a security administrator use to dete...
Question #161Security architecture
A security analyst needs to harden access to a network. One of the requirements is to authenticate users with smart cards. Which of the following should the analyst enable to best...
Question #162Threats, vulnerabilities, and mitigations
A recent malware outbreak across a subnet included successful rootkit installations on many PCs, ensuring persistence by rendering remediation efforts ineffective. Which of the fol...
Question #163Security architecture
An organization is building a single virtual environment that will host customer applications and data that require availability at all times. The data center that is hosting the e...
Question #164Security architecture
A company has decided to move its operations to the cloud. It wants to utilize technology that will prevent users from downloading company applications for personal use, restrict d...
Question #165Security architecture
An internet company has created a new collaboration application. To expand the user base, the company wants to implement an option that allows users to log in to the application wi...
Question #166Security architecture
A security architect at a large, multinational organization is concerned about the complexities and overhead of managing multiple encryption keys securely in a multicloud provider...
Question #167Threats, vulnerabilities, and mitigations
In order to strengthen a password and prevent a hacker from cracking it, a random string of 36 characters was added to the password. Which of the following best describes this tech...
Question #168General security concepts
A user is attempting to patch a critical system, but the patch fails to transfer. Which of the following access controls is most likely inhibiting the transfer?
Question #169Threats, vulnerabilities, and mitigations
Which of the following is used to protect a computer from viruses, malware, and Trojans being installed and moving laterally across the network?
Question #170Threats, vulnerabilities, and mitigations
A systems administrator set up a perimeter firewall but continues to notice suspicious connections between internal endpoints. Which of the following should be set up in order to m...
Question #171Security architecture
A business received a small grant to migrate its infrastructure to an off-premises solution. Which of the following should be considered first?
Question #172Security program management and oversight
A company is planning a disaster recovery site and needs to ensure that a single natural disaster would not result in the complete loss of regulated backup data. Which of the follo...
Question #173Threats, vulnerabilities, and mitigations
A security analyst receives alerts about an internal system sending a large amount of unusual DNS queries to systems on the internet over short periods of time during non-business...
Question #174Threats, vulnerabilities, and mitigations
An employee receives a text message from an unknown number claiming to be the company's Chief Executive Officer and asking the employee to purchase several gift cards. Which of the...
Question #175Security program management and oversight
Which of the following would help ensure a security analyst is able to accurately measure the overall risk to an organization when a new vulnerability is disclosed?
Question #176Security Operations
A systems administrator is changing the password policy within an enterprise environment and wants this update implemented on all systems as quickly as possible. Which of the follo...
Question #177Security architecture
An administrator needs to perform server hardening before deployment. Which of the following steps should the administrator take? (Select two).
Question #178General security concepts
Visitors to a secured facility are required to check in with a photo ID and enter the facility through an access control vestibule Which of the following but describes this form of...
Question #179General security concepts
A company must ensure sensitive data at rest is rendered unreadable. Which of the following will the company most likely use?
Question #180Security program management and oversight
Which of the following describes the maximum allowance of accepted risk?
Question #181Security Operations
Which of the following incident response activities ensures evidence is properly handied?
Question #182Security program management and oversight
Which of the following risk management strategies should an enterprise adopt first if a legacy application is critical to business operations and there are preventative controls th...
Question #183Security Operations
Which of the following teams combines both offensive and defensive testing techniques to protect an organization's critical systems?
Question #184Security program management and oversight
A company is working with a vendor to perform a penetration test. Which of the following includes an estimate about the number of hours required to complete the engagement?
Question #185Threats, vulnerabilities, and mitigations
The local administrator account for a company's VPN appliance was unexpectedly used to log in to the remote management interface. Which of the following would have most likely prev...
Question #186Security program management and oversight
Which of the following would be most useful in determining whether the long-term cost to transfer a risk is less than the impact of the risk?
Question #187Threats, vulnerabilities, and mitigations
A security analyst is investigating an application server and discovers that software on the server is behaving abnormally. The software normally runs batch jobs locally and does n...
Question #188Threats, vulnerabilities, and mitigations
Which of the following is the best way to secure an on-site data center against intrusion from an insider?
Question #189General security concepts
An engineer moved to another team and is unable to access the new team's shared folders while still being able to access the shared folders from the former team. After opening a ti...
Access ControlRBACIdentity and Access ManagementAuthorization
Question #190Security architecture
A network administrator is working on a project to deploy a load balancer in the company's cloud environment. Which of the following fundamental security requirements does this pro...
Question #191Security architecture
A technician is deploying a new security camera. Which of the following should the technician do?
Question #192Threats, vulnerabilities, and mitigations
A company is experiencing a web services outage on the public network. The services are up and available but inaccessible. The network logs show a sudden increase in network traffi...
DDoSDenial of ServiceNetwork attacksAttack identification
Question #193Threats, Vulnerabilities, and Mitigations
Which of the following threat actors is the most likely to be motivated by profit?
Threat actorsThreat actor motivationsOrganized crimeCybercrime
Question #194Security Operations
An organization experiences a cybersecurity incident involving a command-and-control server. Which of the following logs should be analyzed to identify the impacted host? (Choose t...
Question #195Security operations
During a penetration test, a vendor attempts to enter an unauthorized area using an access badge. Which of the following types of tests does this represent?
Penetration TestingPhysical SecuritySecurity AssessmentsAccess Control
Question #196General security concepts
A systems administrator uses a key to encrypt a message being sent to a peer in a different branch office. The peer then uses the same key to decrypt the message. Which of the foll...
Symmetric encryptionCryptographyEncryption keys
Question #197Threats, vulnerabilities, and mitigations
A visitor plugs a laptop into a network jack in the lobby and is able to connect to the company's network. Which of the following should be configured on the existing network infra...
Network securityPort securityAccess controlPhysical security
Question #198Security operations
A security administrator is reissuing a former employee's laptop. Which of the following is the best combination of data handling activities for the administrator to perform? (Choo...
Data sanitizationDevice lifecycle managementSecure asset managementData handling
Question #199Security Operations
A systems administrator would like to deploy a change to a production system. Which of the following must the administrator submit to demonstrate that the system can be restored to...
Question #200Security architecture
A company is redesigning its infrastructure and wants to reduce the number of physical servers in use. Which of the following architectures is best suited for this goal?
Question #201Security operations
A bank set up a new server that contains customers' PII. Which of the following should the bank use to make sure the sensitive data is not modified?
Data IntegrityFile Integrity MonitoringSecurity ControlsPII Protection

PreviousPage 4 of 22Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.