2022年最新の実際に出ると確認されたSYO-501試験問題集と解答でSYO-501無料更新
実際問題を使ってSYO-501問題集で100%無料SYO-501試験問題集
質問 415
After an identified security breach, an analyst is tasked to initiate the IR process. Which of the following is the NEXT step the analyst should take?
- A. Escalation
- B. Recovery
- C. Identification
- D. Documentation
- E. Preparation
正解: C
質問 416
A company needs to implement a system that only lets a visitor use the company's network infrastructure if the visitor accepts the AUP. Which of the following should the company use?
- A. Captive portal
- B. Password authentication protocol
- C. RADIUS
- D. WiFi-protected setup
正解: A
質問 417
A company is implementing a system to transfer direct deposit information to a financial institution. One of the requirements is that the financial institution must be certain that the deposit amounts within the file have not been changed. Which of the following should be used to meet the requirement?
- A. Perfect forward secrecy
- B. Digital signatures
- C. Key escrow
- D. Transport encryption
- E. File encryption
正解: B
質問 418
A company has a backup site with equipment on site without any dat
a. This is an example of:
- A. a hot site.
- B. a hot standby.
- C. a warrn site.
- D. a cold site.
正解: C
質問 419
Which of the following would a security specialist be able to determine upon examination of a server's certificate?
- A. CSR
- B. Server private key
- C. CA public key
- D. OID
正解: D
質問 420
In a corporation where compute utilization spikes several times a year, the Chief Information Officer (CIO) has requested a cost-effective architecture to handle the variable capacity demand. Which of the following characteristics BEST describes what the CIO has requested?
- A. High availability
- B. Redundancy
- C. Scalability
- D. Elasticity
正解: D
質問 421
An attack has occurred against a company.
INSTRUCTIONS
You have been tasked to do the following:
Identify the type of attack that is occurring on the network by clicking on the attacker's tablet and reviewing the output. (Answer Area 1) Identify which compensating controls should be implemented on the assets, in order to reduce the effectiveness of future attacks by dragging them to the correct server. (Answer area 2) All objects will be used, but not all placeholders may be filled. Objects may only be used once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.


正解:
解説:
質問 422
An incident responder is preparing to acquire images and files from a workstation that has been compromised. The workstation is still powered on and running. Which of the following should be acquired LAST?
- A. Processor cache
- B. Application files on hard disk
- C. Processes in running memory
- D. Swap space
正解: B
質問 423
Ann a security analyst from a large organization has been instructed to use another more effective scanning tool After installing the tool on her desktop she started a full vulnerability scan After running the scan for eight hours. Ann finds that there were no vulnerabilities identified Which of the following is the MOST likely cause of not receiving any vulnerabilities on the network?
- A. The security analyst credentials did not allow full administrative rights for the scanning tool
- B. The security analyst just recently applied operating system level patches
- C. The organization has a zero tolerance policy against not applying cybersecurity best practices
- D. The organization had a proactive approach to patch management principles and practices
正解: A
質問 424
A technician has installed new vulnerability scanner software on a server that is joined to the company domain. The vulnerability scanner is able to provide visibility over the patch posture of all company's clients. Which of the following is being used?
- A. Passive scan
- B. Gray box vulnerability testing
- C. Bypassing security controls
- D. Credentialed scan
正解: D
解説:
Credentialed scan: Here's an analogy: traditional vulnerability scanning is like a mechanic evaluating a car just by looking at the outside and listening to the motor run. It's useful but there is so much more information available by looking under the hood and plugging into the on-board diagnostics. That level of insight and internal perspective is what credentialed scanning lends to a security assessment.
質問 425
A security analyst captures forensic evidence from a potentially compromised system for further investigation. The evidence is documented and securely stored to FIRST:
- A. recover data at a later time
- B. preserve the data
- C. maintain the chain of custody
- D. obtain a legal hold
正解: C
質問 426
A coding error has been discovered on a customer-facing website. The error causes each request to return confidential PHI data for the incorrect organization. The IT department is unable to identify the specific customers who are affected. As a result at customers must be notified of the potential breach. Which of the following would allow the team to determine the scope of future incidents?
- A. Application fuzzing
- B. Intrusion detection system
- C. Database access monitoring
- D. Monthly vulnerability scans
正解: A
質問 427
- A. SSL
- B. The security administrator knows there are at least four different browsers in use on more than a thousand computers in the domain worldwide. Which of the following solution would be BEST for the security administrator to implement to most efficiently assist with this issue?
- C. ACL
- D. PKI
- E. CRL
正解: A,B
質問 428
The security administrator receives an email on a non-company account from a coworker stating that some reports are not exporting correctly. Attached to the email was an example report file with several customers' names and credit card numbers with the PIN. Which of the following is the BEST technical controls that will help mitigate this risk of disclosing sensitive data?
- A. Classify all data according to its sensitivity and inform the users of data that is prohibited to share
- B. Configure the mail server to require TLS connections for every email to ensure all transport data is encrypted
- C. Implement a DLP solution on the email gateway to scan email and remove sensitive data or files
- D. Create a user training program to identify the correct use of email and perform regular audits to ensure compliance
正解: C
質問 429
A security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center. Drag and drop the applicable controls to each asset types?
Instructions: Controls can be used multiple times and not all placeholders need to be filled. When you have completed the simulation, please select the Done button to submit.
正解:
解説:
質問 430
An administrator is replacing a wireless router. The configuration of the old wireless router was not documented before it stopped functioning. The equipment connecting to the wireless network uses older legacy equipment that was manufactured prior to the release of the 802.11i standard.
Which of the following configuration options should the administrator select for the new wireless router?
- A. WPA+TKIP
- B. WPA2+TKIP
- C. WPA2+CCMP
- D. WPA+CCMP
正解: A
解説:
Answers with WPA2 should be rejected since the equipment in use will not connect to it. It does not matter if it is the most secure if it doesn't do the job.
WPA-CCMP is not supported by many devices. Using this we would risk devices not being able to connect.
The only thing that is sure to work is C.
質問 431
A company uses wireless for ail laptops and keeps a very detailed record of its assets, along with a comprehensive list of devices that are authorized to be on the wireless network. The Chief Information Officer (CIO) is concerned about a script kiddie potentially using an unauthorized device to brute force the wireless PSK and obtain access to the internal network. Which of the following should the company implement to BEST prevent this from occurring?
- A. WPA-EAP
- B. IP filtering
- C. A WIDS
- D. A BPDU guard
正解: C
質問 432
A newly purchased corporate WAP needs to be configured in the MOST secure manner possible.
INSTRUCTIONS
Please click on the below items on the network diagram and configure them accordingly:
* WAP
* DHCP Server
* AAA Server
* Wireless Controller
* LDAP Server
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

正解:
解説:
質問 433
Which of the following would be considered multifactor authentication?
- A. Strong password and fingerprint
- B. Voice recognition and retina scan
- C. PIN and security question no :s
- D. Hardware token and smart card
正解: A
質問 434
......
CompTIA SYO-501 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
合格させるSYO-501試験問題は更新された715問あります:https://jp.fast2test.com/SYO-501-premium-file.html