Trusted Worldwide Questions & Answers
CompTIA SY0-701 Exam Actual Questions
The questions for SY0-701 were last updated on Oct 4, 2024.
- Viewing page 1 out of 66 pages.
- Viewing questions 1-5 out of 330 questions
A company that is located in an area prone to hurricanes is developing a disaster recovery plan and looking at site considerations that allow the company to immediately continue operations. Which of the following is the best type of site for this company?
For a company located in an area prone to hurricanes and needing to immediately continue operations, the best type of site is a hot site. A hot site is a fully operational offsite data center that is equipped with hardware, software, and network connectivity and is ready to take over operations with minimal downtime.
Hot site: Fully operational and can take over business operations almost immediately after a disaster.
Cold site: A basic site with infrastructure in place but without hardware or data, requiring significant time to become operational.
Tertiary site: Not a standard term in disaster recovery; it usually refers to an additional backup location but lacks the specifics of readiness.
Warm site: Equipped with hardware and connectivity but requires some time and effort to become fully operational, not as immediate as a hot site.
A. Deterrent
When a critical legacy server is segmented into a private network, the security control being used is compensating. Compensating controls are alternative measures put in place to satisfy a security requirement when the primary control is not feasible or practical. In this case, segmenting the legacy server into a private network serves as a compensating control to protect it from potential vulnerabilities that cannot be mitigated directly.
Compensating: Provides an alternative method to achieve the desired security outcome when the primary control is not possible.
Deterrent: Aims to discourage potential attackers but does not directly address segmentation.
Corrective: Used to correct or mitigate the impact of an incident after it has occurred.
Preventive: Aims to prevent security incidents but is not specific to the context of segmentation.
A company hired a security manager from outside the organization to lead security operations. Which of the following actions should the security manager perform first in this new role?
When a security manager is hired from outside the organization to lead security operations, the first action should be to review the existing security policies. Understanding the current security policies provides a foundation for identifying strengths, weaknesses, and areas that require improvement, ensuring that the security program aligns with the organization's goals and regulatory requirements.
Review security policies: Provides a comprehensive understanding of the existing security framework, helping the new manager to identify gaps and areas for enhancement.
Establish a security baseline: Important but should be based on a thorough understanding of existing policies and practices.
Adopt security benchmarks: Useful for setting standards, but reviewing current policies is a necessary precursor.
Perform a user ID revalidation: Important for ensuring user access is appropriate but not the first step in understanding overall security operations.
A company is decommissioning its physical servers and replacing them with an architecture that will reduce the number of individual operating systems. Which of the following strategies should the company use to achieve this security requirement?
To reduce the number of individual operating systems while decommissioning physical servers, the company should use containerization. Containerization allows multiple applications to run in isolated environments on a single operating system, significantly reducing the overhead compared to running multiple virtual machines, each with its own OS.
Containerization: Uses containers to run multiple isolated applications on a single OS kernel, reducing the need for multiple OS instances and improving resource utilization.
Microservices: An architectural style that structures an application as a collection of loosely coupled services, which does not necessarily reduce the number of operating systems.
Virtualization: Allows multiple virtual machines to run on a single physical server, but each VM requires its own OS, not reducing the number of OS instances.
Infrastructure as code: Manages and provisions computing infrastructure through machine-readable configuration files, but it does not directly impact the number of operating systems.
An organization wants to ensure the integrity of compiled binaries in the production environment. Which of the following security measures would best support this objective?
To ensure the integrity of compiled binaries in the production environment, the best security measure is code signing. Code signing uses digital signatures to verify the authenticity and integrity of the software, ensuring that the code has not been tampered with or altered after it was signed.
Code signing: Involves signing code with a digital signature to verify its authenticity and integrity, ensuring the compiled binaries have not been altered.
Input validation: Ensures that only properly formatted data enters an application but does not verify the integrity of compiled binaries.
SQL injection: A type of attack, not a security measure.
Static analysis: Analyzes code for vulnerabilities and errors but does not ensure the integrity of compiled binaries in production.
Unlock All Questions for CompTIA SY0-701 Exam
Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits
Get All 330 Questions & Answers