Download CompTIA.PracticeDumps.SY0-401.2018-07-08.1e.1001q.vcex

Exam CompTIA Security+ Certification Exam
Number SY0-401
File Name CompTIA.PracticeDumps.SY0-401.2018-07-08.1e.1001q.vcex
Size 1.17 Mb
Posted July 10, 2018


How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.


With discount: 20%

Demo Questions

Question 1

A system security analyst using an enterprise monitoring tool notices an unknown internal host exfiltrating files to several foreign IP addresses. 
Which of the following would be an appropriate mitigation technique?

  • A: Disabling unnecessary accounts
  • B: Rogue machine detection
  • C: Encrypting sensitive files
  • D: Implementing antivirus
Question 2

Matt, a developer, recently attended a workshop on a new application. The developer installs the new application on a production system to test the functionality. 
Which of the following is MOST likely affected?

  • A: Application design
  • B: Application security
  • C: Initial baseline configuration
  • D: Management of interfaces
Question 3

In order to maintain oversight of a third party service provider, the company is going to implement a Governance, Risk, and Compliance (GRC) system. This system is promising to provide overall security posture coverage. Which of the following is the MOST important activity that should be considered?

  • A: Continuous security monitoring
  • B: Baseline configuration and host hardening
  • C: Service Level Agreement (SLA) monitoring
  • D: Security alerting and trending
Question 4

A security analyst performs the following activities: monitors security logs, installs surveillance cameras and analyzes trend reports. 
Which of the following job responsibilities is the analyst performing? (Choose two.)

  • A: Detect security incidents
  • B: Reduce attack surface of systems
  • C: Implement monitoring controls
  • D: Hardening network devices
  • E: Prevent unauthorized access
Question 5

Which of the following is an indication of an ongoing current problem?

  • A: Alert
  • B: Trend
  • C: Alarm
  • D: Trap
Question 6

Which of the following is a notification that an unusual condition exists and should be investigated?

  • A: Alert
  • B: Trend
  • C: Alarm
  • D: Trap
Question 7

A security manager must remain aware of the security posture of each system. Which of the following supports this requirement?

  • A: Training staff on security policies
  • B: Establishing baseline reporting
  • C: Installing anti-malware software
  • D: Disabling unnecessary accounts/services
Question 8

Suspicious traffic without a specific signature was detected. Under further investigation, it was determined that these were false indicators. 
Which of the following security devices needs to be configured to disable future false alarms?

  • A: Signature based IPS
  • B: Signature based IDS
  • C: Application based IPS
  • D: Anomaly based IDS
Question 9

Jane, a security administrator, has observed repeated attempts to break into a server. Which of the following is designed to stop an intrusion on a specific server?

  • A: HIPS
  • B: NIDS
  • C: HIDS
  • D: NIPS
Question 10

Which of the following tools will allow a technician to detect security-related TCP connection anomalies?

  • A: Logical token
  • B: Performance monitor
  • C: Public key infrastructure
  • D: Trusted platform module