SY0-701無料問題集「CompTIA Security+ Certification」

質問 1

Which of the following agreement types defines the time frame in which a vendor needs to respond?

（A）SLA

（B）MOU

（C）MOA

（D）SOW

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

A healthcare organization wants to provide a web application that allows individuals to digitally report health emergencies.
Which of the following is the most important consideration during development?

（A）Availability

（B）Cost

（C）Scalability

（D）Ease of deployment

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

An administrator has configured a quarantine subnet for all guest devices that connect to the network. Which of the following would be best for the security team to configure on the MDM before allowing access to corporate resources?

（A）Compliance attestation

（B）Device fingerprinting

（C）802.1X

（D）NAC

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Which of the following is the most likely benefit of conducting an internal audit?

（A）Reports are not formal and can be reassigned.

（B）Findings are reported to shareholders.

（C）Control gaps are identified for remediation.

（D）The need for external audits is eliminated.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which of the following is the best way to remove personal data from a social media account that is no longer being used?

（A）Uninstall the social media application

（B）Terminate the social media account

（C）Perform a factory reset

（D）Exercise the right to be forgotten

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Which of the following allows for the attribution of messages to individuals?

（A）Non-repudiation

（B）Authentication

（C）Adaptive identity

（D）Access logs

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Users at a company are reporting they are unable to access the URL for a new retail website because it is flagged as gambling and is being blocked.
Which of the following changes would allow users to access the site?

（A）Configuring the IPS to allow shopping

（B）Tuning the DLP rule that detects credit card data

（C）Creating a firewall rule to allow HTTPS traffic

（D）Updating the categorization in the content filter

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

After a recent ransomware attack on a company's system, an administrator reviewed the log files. Which of the following control types did the administrator use?

（A）Compensating

（B）Preventive

（C）Corrective

（D）Detective

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

Which of the following describes the understanding between a company and a client about what will be provided and the accepted time needed to provide the company with the resources?

（A）SLA

（B）MOU

（C）BPA

（D）MOA

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

A small business uses kiosks on the sales floor to display product information for customers. A security team discovers the kiosks use end-of-life operating systems. Which of the following is the security team most likely to document as a security implication of the current architecture?

（A）Cost of replacement

（B）Ease of recovery

（C）Patch availability

（D）Product software compatibility

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

Which of the following types of identification methods can be performed on a deployed application during runtime?

（A）Package monitoring

（B）Bug bounty

（C）Dynamic analysis

（D）Code review

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

A company's accounts payable clerk receives a message from a vendor asking to change their bank account before paying an invoice. The clerk makes the change and sends the payment to the new account. Days later, the clerk receives another message from the same vendor with a request for a missing payment to the original bank account. Which of the following has most likely occurred?

（A）Data exfiltration

（B）Business email compromise

（C）Phishing campaign

（D）Pretext calling

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

Which of the following would help ensure a security analyst is able to accurately measure the overall risk to an organization when a new vulnerability is disclosed?

（A）A full inventory of all hardware and software

（B）Documentation of system classifications

（C）A list of system owners and their departments

（D）Third-party risk assessment documentation

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

After an audit, an administrator discovers all users have access to confidential data on a file server. Which of the following should the administrator use to restrict access to the data quickly?

（A）Access control lists

（B）Content filtering

（C）Data loss prevention

（D）Group Policy

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

Which of the following would be the best way to handle a critical business application that is running on a legacy server?

（A）Isolation

（B）Decommissioning

（C）Segmentation

（D）Hardening

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

A security team purchases a tool for cloud security posture management. The team is quickly overwhelmed by the number of misconfigurations that the tool detects. Which of the following should the security team configure to establish workflows for cloud resource security?

（A）SOAR

（B）XDR

（C）IAM

（D）CASB

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

SY0-701 無料問題集「CompTIA Security+ Certification」

弊社を連絡する

関連リンク

トップ試験