Free CompTIA SY0-701 Practice Exams - Page 2 of 19

Question #11

Which of the following is used to protect a computer from viruses, malware, and Trojans being installed and moving laterally across the network?

A . IDS
B . ACL
C . EDR
D . NAC

Reveal Solution Hide Solution

Question #12

Which of the following must be considered when designing a high-availability network? (Choose two).

A . Ease of recovery
B . Ability to patch
C . Physical isolation
D . Responsiveness
E . Attack surface
F . Extensible authentication

Reveal Solution Hide Solution

Correct Answer: A, E
A, E

Explanation:

A high-availability network is a network that is designed to minimize downtime and ensure continuous operation even in the event of a failure or disruption. A high-availability network must consider the following factors12:

Ease of recovery: This refers to the ability of the network to restore normal functionality quickly and efficiently after a failure or disruption. Ease of recovery can be achieved by implementing backup and restore procedures, redundancy and failover mechanisms, fault tolerance and resilience, and disaster recovery plans.

Attack surface: This refers to the amount of exposure and vulnerability of the network to potential

threats and attacks. Attack surface can be reduced by implementing security controls such as firewalls, encryption, authentication, access control, segmentation, and hardening.

The other options are not directly related to high-availability network design:

Ability to patch: This refers to the process of updating and fixing software components to address security issues, bugs, or performance improvements. Ability to patch is important for maintaining the security and functionality of the network, but it is not a specific factor for high-availability network design.

Physical isolation: This refers to the separation of network components or devices from other networks or physical environments. Physical isolation can enhance the security and performance of the network, but it can also reduce the availability and accessibility of the network resources. Responsiveness: This refers to the speed and quality of the network’s performance and service delivery. Responsiveness can be measured by metrics such as latency, throughput, jitter, and packet loss. Responsiveness is important for ensuring customer satisfaction and user experience, but it is not a specific factor for high-availability network design.

Extensible authentication: This refers to the ability of the network to support multiple and flexible authentication methods and protocols. Extensible authentication can improve the security and convenience of the network, but it is not a specific factor for high-availability network design. Reference 1: CompTIA Security+ SY0-701 Certification Study Guide, page 972: High Availability C CompTIA Security+ SY0-701 C 3.4, video by Professor Messer.

Question #13

A new employee logs in to the email system for the first time and notices a message from human resources about onboarding. The employee hovers over a few of the links within the email and discovers that the links do not correspond to links associated with the company.

Which of the following attack vectors is most likely being used?

A . Business email
B . Social engineering
C . Unsecured network
D . Default credentials

Reveal Solution Hide Solution

Question #14

Which of the following security concepts is accomplished when granting access after an individual has logged into a computer network?

A . Authorization
B . Identification
C . Non-repudiation
D . Authentication

Reveal Solution Hide Solution

Question #15

A security analyst is creating base for the server team to follow when hardening new devices for deployment.

Which of the following beet describes what the analyst is creating?

A . Change management procedure
B . Information security policy
C . Cybersecurity framework
D . Secure configuration guide

Reveal Solution Hide Solution

Question #16

Which of the following would best explain why a security analyst is running daily vulnerability scans on all corporate endpoints?

A . To track the status of patch installations
B . To find shadow IT cloud deployments
C . To continuously monitor hardware inventory
D . To hunt for active attackers in the network

Reveal Solution Hide Solution

Question #17

A company wants to improve the availability of its application with a solution that requires minimal effort in the event a server needs to be replaced or added.

Which of the following would be the best solution to meet these objectives?

A . Load balancing
B . Fault tolerance
C . Proxy servers
D . Replication

Reveal Solution Hide Solution

Question #18

Which of the following threat vectors is most commonly utilized by insider threat actors attempting

data exfiltration?

A . Unidentified removable devices
B . Default network device credentials
C . Spear phishing emails
D . Impersonation of business units through typosquatting

Reveal Solution Hide Solution

Question #19

Which of the following teams combines both offensive and defensive testing techniques to protect an organization’s critical systems?

A . Red
B . Blue
C . Purple
D . Yellow

Reveal Solution Hide Solution

Question #20

A security analyst is creating base for the server team to follow when hardening new devices for deployment.

Which of the following beet describes what the analyst is creating?

A . Change management procedure
B . Information security policy
C . Cybersecurity framework
D . Secure configuration guide

Reveal Solution Hide Solution