CompTIA SY0-601 Quiz 24 Topic 3 Questions 116-120

Question: 1

A security engineer needs to build a solution to satisfy regulatory requirements that state certain critical servers must be accessed using MF

AHowever, the critical servers are older and are unable to support the addition of MFA. Which of the following will the engineer MOST likely use to achieve this objective?

AA forward proxy

BA stateful firewall

CA jump server

DA port tap

Show Answer

Question: 2

Administrators have allowed employee to access their company email from personal computers. However, the administrators are concerned that these computes are another attach surface and can result in user accounts being breached by foreign actors. Which of the following actions would provide the MOST secure solution?

AEnable an option in the administration center so accounts can be locked if they are accessed from different geographical areas

BImplement a 16-character minimum length and 30-day expiration password policy

CSet up a global mail rule to disallow the forwarding of any company email to email addresses outside the organization

DEnforce a policy that allows employees to be able to access their email only while they are connected to the internet via VPN

Show Answer

Question: 3

A news article states that a popular web browser deployed on all corporate PCs is vulnerable a zero-day attack. Which of the following MOST concern the Chief Information Security Officer about the information in the new article?

AInsider threats have compromised this network

BWeb browsing is not functional for the entire network

CAntivirus signatures are required to be updated immediately

DNo patches are available for the web browser

Show Answer

Question: 4

A penetration tester gains access to the network by exploiting a vulnerability on a public-facing web server. Which of the following techniques will the tester most likely perform NEXT?

AGather more information about the target through passive reconnaissance

BEstablish rules of engagement before proceeding

CCreate a user account to maintain persistence

DMove laterally throughout the network to search for sensitive information

Show Answer

Question: 5

A security manager runs Nessus scans of the network after every maintenance window. Which of the following is the security manger MOST likely trying to accomplish?

AVerifying that system patching has effectively removed knows vulnerabilities

BIdentifying assets on the network that may not exist on the network asset inventory

CValidating the hosts do not have vulnerable ports exposed to the internet

DChecking the status of the automated malware analysis that is being performed

Show Answer

CompTIA SY0-601 Quiz:24 Topic:3 Questions:116-120