Free SY0-601 Exam Braindumps

- (Exam Topic 2)
A security analyst is tasked with defining the “something you are“ factor of the company’s MFA settings. Which of the following is BEST to use to complete the configuration?

1. A. Gait analysis
2. B. Vein
3. C. Soft token
4. D. HMAC-based, one-time password

Correct Answer: A

- (Exam Topic 6)
The Chief Information Security Officer wants to pilot a new adaptive, user-based authentication method. The concept Includes granting logical access based on physical location and proximity. Which of the following Is the BEST solution for the pilot?

1. A. Geofencing
2. B. Self-sovereign identification
3. C. PKl certificates
4. D. SSO

Correct Answer: A
Geofencing is a location-based technology that allows an organization to define and enforce logical access control policies based on physical location and proximity. Geofencing can be used to grant or restrict access to systems, data, or facilities based on an individual's location, and it can be integrated into a user's device or the infrastructure. This makes it a suitable solution for the pilot project to test the adaptive, user-based authentication method that includes granting logical access based on physical location and proximity.
Reference: CompTIA Security+ SY0-601 Official Text Book, Chapter 4: "Identity and Access Management".

- (Exam Topic 3)
The following is an administrative control that would be MOST effective to reduce the occurrence of malware execution?

1. A. Security awareness training
2. B. Frequency of NIDS updates
3. C. Change control procedures
4. D. EDR reporting cycle

Correct Answer: A

- (Exam Topic 3)
A company has limited storage available and online presence that cannot for more than four hours. Which of the following backup methodologies should the company implement to allow for the FASTEST database restore time In the event of a failure, which being maindful of the limited available storage space?

1. A. Implement fulltape backup every Sunday at 8:00 p.m and perform nightly tape rotations.
2. B. Implement different backups every Sunday at 8:00 and nightly incremental backups at 8:00 p.m
3. C. Implement nightly full backups every Sunday at 8:00 p.m
4. D. Implement full backups every Sunday at 8:00 p.m and nightly differential backups at 8:00

Correct Answer: B

- (Exam Topic 3)
A company provides mobile devices to its users to permit access to email and enterprise applications. The company recently started allowing users to select from several different vendors and device models. When configuring the MDM, which of the following is a key security implication of this heterogeneous device approach?

1. A. The most common set of MDM configurations will become the effective set of enterprise mobile security controls.
2. B. All devices will need to support SCEP-based enrollment; therefore, the heterogeneity of the chosen architecture may unnecessarily expose private keys to adversaries.
3. C. Certain devices are inherently less secure than others, so compensatory controls will be needed to address the delta between device vendors.
4. D. MDMs typically will not support heterogeneous deployment environments, so multiple MDMs will need to be installed and configured.

Correct Answer: C