All About Tested SY0-601 Free Practice Exam

NEW QUESTION 1
A network administrator has been asked to design a solution to improve a company's security posture The administrator is given the following, requirements?
• The solution must be inline in the network
• The solution must be able to block known malicious traffic
• The solution must be able to stop network-based attacks
Which of the following should the network administrator implement to BEST meet these requirements?

• A. HIDS
• B. NIDS
• C. HIPS
• D. NIPS

Answer: D

NEW QUESTION 2
An organization needs to implement more stringent controls over administrator/root credentials and service accounts. Requirements for the project include:
Check-in/checkout of credentials
The ability to use but not know the password
Automated password changes
Logging of access to credentials
Which of the following solutions would meet the requirements?

• A. OAuth 2.0
• B. Secure Enclave
• C. A privileged access management system
• D. An OpenID Connect authentication system

Answer: D

NEW QUESTION 3
A software developer needs to perform code-execution testing, black-box testing, and non-functional testing on a new product before its general release. Which of the following BEST describes the tasks the developer is conducting?

• A. Verification
• B. Validation
• C. Normalization
• D. Staging

Answer: A

NEW QUESTION 4
A company has drafted an insider-threat policy that prohibits the use of external storage devices. Which of the following would BEST protect the company from data exfiltration via removable media?

• A. Monitoring large data transfer transactions in the firewall logs
• B. Developing mandatory training to educate employees about the removable media policy
• C. Implementing a group policy to block user access to system files
• D. Blocking removable-media devices and write capabilities using a host-based security tool

Answer: D

NEW QUESTION 5
A security analyst receives the configuration of a current VPN profile and notices the authentication is only applied to the IP datagram portion of the packet. Which of the following should the analyst implement to authenticate the entire packet?

• A. AH
• B. ESP
• C. SRTP
• D. LDAP

Answer: B

NEW QUESTION 6
Which of the following should be put in place when negotiating with a new vendor about the timeliness of the response to a significant outage or incident?

• A. MOU
• B. MTTR
• C. SLA
• D. NDA

Answer: C

NEW QUESTION 7
On which of the following is the live acquisition of data for forensic analysis MOST dependent? (Choose two.)

• A. Data accessibility
• B. Legal hold
• C. Cryptographic or hash algorithm
• D. Data retention legislation
• E. Value and volatility of data
• F. Right-to-audit clauses

Answer: EF

NEW QUESTION 8
Which of the following would be the BEST resource lor a software developer who is looking to improve secure coding practices for web applications?

• A. OWASP
• B. Vulnerability scan results
• C. NIST CSF
• D. Third-party libraries

Answer: A

NEW QUESTION 9
A company is implementing MFA for all applications that store sensitive data. The IT manager wants MFA to be non-disruptive and user friendly. Which of the following technologies should the IT manager use when implementing MFA?

• A. One-time passwords
• B. Email tokens
• C. Push notifications
• D. Hardware authentication

Answer: C

NEW QUESTION 10
A RAT that was used to compromise an organization’s banking credentials was found on a user’s computer. The RAT evaded antivirus detection. It was installed by a user who has local administrator rights to the system as part of a remote management tool set. Which of the following recommendations would BEST prevent this from reoccurring?

• A. Create a new acceptable use policy.
• B. Segment the network into trusted and untrusted zones.
• C. Enforce application whitelisting.
• D. Implement DLP at the network boundary.

Answer: C

NEW QUESTION 11
A company recently moved sensitive videos between on-premises. Company-owned websites. The company then learned the videos had been uploaded and shared to the internet. Which of the following would MOST likely allow the company to find the cause?

• A. Checksums
• B. Watermarks
• C. Oder of volatility
• D. A log analysis
• E. A right-to-audit clause

Answer: D

NEW QUESTION 12
A cybersecurity analyst reviews the log files from a web server and sees a series of files that indicates a directory-traversal attack has occurred. Which of the following is the analyst MOST likely seeing?

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: B

NEW QUESTION 13
A host was infected with malware. During the incident response, Joe, a user, reported that he did not receive any emails with links, but he had been browsing the Internet all day. Which of the following would MOST likely show where the malware originated?

• A. The DNS logs
• B. The web server logs
• C. The SIP traffic logs
• D. The SNMP logs

Answer: A

NEW QUESTION 14
A financial analyst is expecting an email containing sensitive information from a client. When the email arrives, the analyst receives an error and is unable to open the encrypted message. Which of the following is the MOST likely cause of the issue?

• A. The S/MME plug-in is not enabled.
• B. The SLL certificate has expired.
• C. Secure IMAP was not implemented
• D. POP3S is not supported.

Answer: A

NEW QUESTION 15
A smart retail business has a local store and a newly established and growing online storefront. A recent storm caused a power outage to the business and the local ISP, resulting in several hours of lost sales and delayed order processing. The business owner now needs to ensure two things:
* Protection from power outages
* Always-available connectivity In case of an outage
The owner has decided to implement battery backups for the computer equipment Which of the following would BEST fulfill the owner's second need?

• A. Lease a point-to-point circuit to provide dedicated access.
• B. Connect the business router to its own dedicated UPS.
• C. Purchase services from a cloud provider for high availability
• D. Replace the business's wired network with a wireless network.

Answer: C

NEW QUESTION 16
Which of the following are requirements that must be configured for PCI DSS compliance? (Select TWO).

• A. Testing security systems and processes regularly
• B. Installing and maintaining a web proxy to protect cardholder data
• C. Assigning a unique ID to each person with computer access
• D. Encrypting transmission of cardholder data across private networks
• E. Benchmarking security awareness training for contractors
• F. Using vendor-supplied default passwords for system passwords

Answer: BD

NEW QUESTION 17
An organization has been experiencing outages during holiday sales and needs to ensure availability of its point-of-sale systems The IT administrator has been asked to improve both server-data fault tolerance and site availability under high consumer load Which of the following are the BEST options to accomplish this objective'? (Select TWO)

• A. Load balancing
• B. Incremental backups
• C. UPS
• D. RAID
• E. Dual power supply
• F. NIC teaming

Answer: AD

NEW QUESTION 18
A company recently experienced a data breach and the source was determined to be an executive who was charging a phone in a public area. Which of the following would MOST likely have prevented this breach?

• A. A firewall
• B. A device pin
• C. A USB data blocker
• D. Biometrics

Answer: C

NEW QUESTION 19
A user is concerned that a web application will not be able to handle unexpected or random input without crashing. Which of the following BEST describes the type of testing the user should perform?

• A. Code signing
• B. Fuzzing
• C. Manual code review
• D. Dynamic code analysis

Answer: D

NEW QUESTION 20
A smart switch has the ability to monitor electrical levels and shut off power to a building in the event of power surge or other fault situation. The switch was installed on a wired network in a hospital and is monitored by the facilities department via a cloud application. The security administrator isolated the switch on a separate VLAN and set up a patch routine. Which of the following steps should also be taken to harden the smart switch?

• A. Set up an air gap for the switch.
• B. Change the default password for the switch.
• C. Place the switch In a Faraday cage.
• D. Install a cable lock on the switch

Answer: B

NEW QUESTION 21
An organization's RPO for a critical system is two hours. The system is used Monday through Friday, from 9:00 am to 5:00 pm. Currently, the organization performs a full backup every Saturday that takes four hours to complete. Which of the following additional backup implementations would be the BEST way for the analyst to meet the business requirements?

• A. Incremental backups Monday through Friday at 6:00 p.m and differential backups hourly
• B. Full backups Monday through Friday at 6:00 p.m and incremental backups hourly.
• C. incremental backups Monday through Friday at 6:00 p.m and full backups hourly.
• D. Full backups Monday through Friday at 6:00 p.m and differential backups hourly.

Answer: A

NEW QUESTION 22
A security administrator currently spends a large amount of time on common security tasks, such aa report generation, phishing investigations, and user provisioning and deprovisioning This prevents the administrator from spending time on other security projects. The business does not have the budget to add more staff members. Which of the following should the administrator implement?

• A. DAC
• B. ABAC
• C. SCAP
• D. SOAR

Answer: D

NEW QUESTION 23
A security analyst needs to generate a server certificate to be used for 802.1X and secure RDP connections. The analyst is unsure what is required to perform the task and solicits help from a senior colleague. Which of the following is the FIRST step the senior colleague will most likely tell the analyst to perform to accomplish this task?

• A. Create an OCSP
• B. Generate a CSR
• C. Create a CRL
• D. Generate a .pfx file

Answer: B

NEW QUESTION 24
......