SY0-701 Exam Questions

Which of the following tasks is typically included in the BIA process?

Which of the following most impacts an administrator's ability to address CVEs discovered on a server?

Which of the following describes effective change management procedures?

The CIRT is reviewing an incident that involved a human resources recruiter exfiltrating sensitive company data. The CIRT found that the recruiter was able to use HTTP over port 53...

An enterprise is working with a third party and needs to allow access between the internal networks of both parties for a secure file migration. The solution needs to ensure encryp...

An administrator has identified and fingerprinted specific files that will generate an alert if an attempt is made to email these files outside of the organization. Which of the fo...

A software developer released a new application and is distributing application files via the developer's website. Which of the following should the developer post on the website t...

An organization wants to limit potential impact to its log-in database in the event of a breach. Which of the following options is the security team most likely to recommend?

A systems administrator is advised that an external web server is not functioning property. The administrator reviews the following firewall logs containing traffic going to the we...

An organization would like to calculate the time needed to resolve a hardware issue with a server. Which of the following risk management processes describes this example?

Which of the following would be the most appropriate way to protect data in transit?

Which of the following risks can be mitigated by HTTP headers?

Which of the following describes the category of data that is most impacted when it is lost?

After performing an assessment, an analyst wants to provide a risk rating for the findings. Which of the following concepts should most likely be considered when calculating the ra...

Which of the following should a systems administrator set up to increase the resilience of an application by splitting the traffic between two identical sites?

Which of the following is most likely to be deployed to obtain and analyze attacker activity and techniques?

Which of the following would most likely mitigate the impact of an extended power outage on a company's environment?

A security analyst is investigating an alert that was produced by endpoint protection software. The analyst determines this event was a false positive triggered by an employee who...

An organization is required to maintain financial data records for three years and customer data for five years. Which of the following data management policies should the organiza...

A systems administrator notices that the research and development department is not using the company VPN when accessing various company-related services and systems. Which of the...

Which of the following is classified as high availability in a cloud environment?

An accounting clerk sent money to an attacker's bank account after receiving fraudulent instructions to use a new account. Which of the following would most likely prevent this act...

After conducting a vulnerability scan, a systems administrator notices that one of the identified vulnerabilities is not present on the systems that were scanned. Which of the foll...

Which of the following best describes configuring devices to log to an off-site location for possible future reference?

Which of the following security concepts is being followed when implementing a product that offers protection against DDoS attacks?

A security analyst is reviewing the source code of an application in order to identify misconfigurations and vulnerabilities. Which of the following kinds of analysis best describe...

Which of the following would be used to detect an employee who is emailing a customer list to a personal account before leaving the company?

Which of the following penetration testing teams is focused only on trying to compromise an organization using an attacker's tactics?

A manager receives an email that contains a link to receive a refund. After hovering over the link, the manager notices that the domain's URL points to a suspicious link. Which of...

To improve the security at a data center, a security administrator implements a CCTV system and posts several signs about the possibility of being filmed. Which of the following be...

During a recent breach, employee credentials were compromised when a service desk employee issued an MFA bypass code to an attacker who called and posed as an employee. Which of th...

A systems administrator is working on a defense-in-depth strategy and needs to restrict activity from employees after hours. Which of the following should the systems administrator...

An organization maintains intellectual property that it wants to protect. Which of the following concepts would be most beneficial to add to the company's security awareness traini...

A security engineer needs to configure an NGFW to minimize the impact of the increasing number of various traffic types during attacks. Which of the following types of rules is the...

A security administrator identifies an application that is storing data using MD5. Which of the following best identifies the vulnerability likely present in the application?

A company that is located in an area prone to hurricanes is developing a disaster recovery plan and looking at site considerations that allow the company to immediately continue op...

Which of the following security concepts is accomplished with the installation of a RADIUS server?

A company tested and validated the effectiveness of network security appliances within the corporate network. The IDS detected a high rate of SQL injection attacks against the comp...

Which of the following security controls is most likely being used when a critical legacy server is segmented into a private network?

A company hired a security manager from outside the organization to lead security operations. Which of the following actions should the security manager perform first in this new r...

A company is decommissioning its physical servers and replacing them with an architecture that will reduce the number of individual operating systems. Which of the following strate...

An organization wants to ensure the integrity of compiled binaries in the production environment. Which of the following security measures would best support this objective?

A security administrator is configuring fileshares. The administrator removed the default permissions and added permissions for only users who will need to access the fileshares as...

Which of the following best describe a penetration test that resembles an actual external attach?

A company is implementing a vendor's security tool in the cloud. The security director does not want to manage users and passwords specific to this tool but would rather utilize th...

A company wants to reduce the time and expense associated with code deployment. Which of the following technologies should the company utilize?

A security team created a document that details the order in which critical systems should be through back online after a major outage. Which of the following documents did the tea...

Which of the following best represents an application that does not have an on-premises requirement and is accessible from anywhere?

A company is utilizing an offshore team to help support the finance department. The company wants to keep the data secure by keeping it on a company device but does not want to pro...

The application development teams have been asked to answer the following questions: - Does this application receive patches from an external source? - Does this application contai...