Lead4pass latest CompTIA Security+ SY0-401 dumps pdf practice files and dumps vce youtube free demo. High quality CompTIA Security+ SY0-401 dumps exam questions and answers free try. https://www.leads4pass.com/sy0-401.html dumps pdf training resources. Get the best CompTIA Security+ SY0-401 dumps pdf training materials and study guides, pass CompTIA SY0-401 exam test easily.
New CompTIA SY0-401 dumps pdf practice questions and answers: https://drive.google.com/open?id=0B_7qiYkH83VRMEhpY1lTQnR4NDA
New CompTIA SK0-003 dumps pdf practice questions and answers: https://drive.google.com/open?id=0B_7qiYkH83VRYWxPaWhYMXM3dVk
Vendor: CompTIA
Certifications: Security+
Exam Name: CompTIA Security+ Certification
Exam Code: SY0-401
Total Questions: 1776 Q&As
QUESTION 1
A computer on a company network was infected with a zero-day exploit after an employee accidently opened an email that contained malicious content. The employee recognized the email as malicious and was attempting to delete it, but accidently opened it. Which of the following should be done to prevent this scenario from occurring again in the future?
A. Install host-based firewalls on all computers that have an email client installed
B. Set the email program default to open messages in plain text
C. Install end-point protection on all computers that access web email
D. Create new email spam filters to delete all messages from that sender
Correct Answer: C
QUESTION 2
A risk assessment team is concerned about hosting data with a cloud service provider (CSP) which of the following findings would justify this concern?
A. The CPS utilizes encryption for data at rest and in motion
B. The CSP takes into account multinational privacy concerns
C. The financial review indicates the company is a startup
D. SLA state service tickets will be resolved in less than 15 minutes
Correct Answer: B
QUESTION 3
The IT department has installed new wireless access points but discovers that the signal extends far into the parking lot. Which of the following actions should be taken to correct this? SY0-401 dumps
A. Disable the SSID broadcasting
B. Configure the access points so that MAC filtering is not used
C. Implement WEP encryption on the access points
D. Lower the power for office coverage only
Correct Answer: D
QUESTION 4
A security guard has informed the Chief information Security Officer that a person with a tablet has been walking around the building. The guard also noticed strange white markings in different areas of the parking lot. The person is attempting which of the following types of attacks?
A. Jamming
B. War chalking
C. Packet sniffing
D. Near field communication
Correct Answer: B
QUESTION 5
Several employee accounts appear to have been cracked by an attacker. Which of the following should the security administrator implement to mitigate password cracking attacks? (Select TWO).
A. Increase password complexity
B. Deploy an IDS to capture suspicious logins
C. Implement password history
D. Implement monitoring of logins
E. Implement password expiration
F. Increase password length
Correct Answer: AF
QUESTION 6
A security Operations Center was scanning a subnet for infections and found a contaminated machine.
One of the administrators disabled the switch port that the machine was connected to, and informed a local technician of the infection. Which of the following steps did the administrator perform?
A. Escalation
B. Identification
C. Notification
D. Quarantine
E. Preparation
Correct Answer: CD
QUESTION 7
To ensure compatibility with their flagship product, the security engineer is tasked to recommend an encryption cipher that will be compatible with the majority of third party software and hardware vendors.
Which of the following should be recommended?
A. SHA
B. MD5
C. Blowfish
D. AES
Correct Answer: D
QUESTION 8
A security administrator wishes to increase the security of the wireless network. Which of the following BEST addresses this concern?
A. Change the encryption from TKIP-based to CCMP-based.
B. Set all nearby access points to operate on the same channel.
C. Configure the access point to use WEP instead of WPA2.
D. Enable all access points to broadcast their SSIDs.
Correct Answer: A
QUESTION 9
After an assessment, auditors recommended that an application hosting company should contract with additional data providers for redundant high speed Internet connections. Which of the following is MOST likely the reason for this recommendation? (Select TWO).
A. To allow load balancing for cloud support
B. To allow for business continuity if one provider goes out of business
C. To eliminate a single point of failure
D. To allow for a hot site in case of disaster
E. To improve intranet communication speeds
Correct Answer: BC
QUESTION 10
The systems administrator wishes to implement a hardware-based encryption method that could also be used to sign code. SY0-401 dumps They can achieve this by:
A. Utilizing the already present TPM.
B. Configuring secure application sandboxes.
C. Enforcing whole disk encryption.
D. Moving data and applications into the cloud.
Correct Answer: A
QUESTION 11
Which of the following is the BEST reason for placing a password lock on a mobile device?
A. Prevents an unauthorized user from accessing owner’s data
B. Enables remote wipe capabilities
C. Stops an unauthorized user from using the device again
D. Prevents an unauthorized user from making phone calls
Correct Answer: A
QUESTION 12
A small IT security form has an internal network composed of laptops, servers, and printers. The network has both wired and wireless segments and supports VPN access from remote sites. To protect the network from internal and external threats, including social engineering attacks, the company decides to implement stringent security controls. Which of the following lists is the BEST combination of security controls to implement?
A. Disable SSID broadcast, require full disk encryption on servers, laptop, and personally owned electronic devices, enable MAC filtering on WAPs, require photographic ID to enter the building.
B. Enable port security; divide the network into segments for servers, laptops, public and remote users; apply ACLs to all network equipment; enable MAC filtering on WAPs; and require two-factor authentication for network access.
C. Divide the network into segments for servers, laptops, public and remote users; require the use of one time pads for network key exchange and access; enable MAC filtering ACLs on all servers.
D. Enable SSID broadcast on a honeynet; install monitoring software on all corporate equipment’ install CCTVs to deter social engineering; enable SE Linux in permissive mode.
Correct Answer: B
Reference: https://www.leads4pass.com/sy0-401.html dumps exam practice materials and study guides free update.
Watch the video to learn more: https://youtu.be/Ti0gVvsg5eI