NO.1 Which of the following should Joe, a security manager, implement to
reduce the risk of
employees working in collusion to embezzle funds from his
company?
A. Privacy Policy
B. Least Privilege
C. Acceptable Use
D.
Mandatory Vacations
Answer: D
CompTIA questions SY0-401 Exam Tests
Exam Prep SY0-401 Exam
Tests Exam Cost
Explanation:
When one person fills in for another,
such as for mandatory vacations, it provides an opportunity to
see what the
person is doing and potentially uncover any fraud.
NO.2 Ann works at a
small company and she is concerned that there is no oversight in the
finance
department; specifically, that Joe writes, signs and distributes
paycheques, as well as other
expenditures. Which of the following controls
can she implement to address this concern?
A. Mandatory vacations
B. Time
of day restrictions
C. Least privilege
D. Separation of duties
Answer:
D
CompTIA Latest Dumps SY0-401 Exam Tests Exam Tests SY0-401 Exam
Tests Exam Questions
Explanation:
Separation of duties divides
administrator or privileged tasks into separate groupings, which in turn,
is
individually assigned to unique administrators. This helps in fraud prevention,
error reduction, as
well as conflict of interest prevention. For example,
those who configure security should not be the
same people who test security.
In this case, Joe should not be allowed to write and sign
paycheques.
NO.3 A security technician wishes to gather and analyze all
Web traffic during a particular time
period.
Which of the following
represents the BEST approach to gathering the required data?
A. Configure a
VPN concentrator to log all traffic destined for ports 80 and 443.
B.
Configure a proxy server to log all traffic destined for ports 80 and 443.
C.
Configure a switch to log all traffic destined for ports 80 and 443.
D.
Configure a NIDS to log all traffic destined for ports 80 and 443.
Answer:
B
CompTIA Real Questions SY0-401 Exam Tests original
questions SY0-401 Exam Tests Exam Cram
Explanation:
A proxy server is in
essence a device that acts on behalf of others and in security terms all
internal
user interaction with the Internet should be controlled through a
proxy server. This makes a proxy
server the best tool to gather the required
data.
NO.4 A datacenter requires that staff be able to identify whether
or not items have been removed
from the facility. Which of the following
controls will allow the organization to provide automated
notification of
item removal?
A. CCTV
B. Environmental monitoring
C. RFID
D. EMI
shielding
Answer: C
CompTIA Exam Tests SY0-401 Exam Tests
certification training SY0-401 Exam Tests Test Answers
Explanation:
RFID
is radio frequency identification that works with readers that work with 13.56
MHz smart cards
and 125 kHz proximity cards and can open turnstiles, gates,
and any other physical security
safeguards once the signal is read. Fitting
out the equipment with RFID will allow you to provide
automated notification
of item removal in the event of any of the equipped items is taken off
the
premises.
NO.5 Which of the following is a programming interface
that allows a remote computer to run
programs on a local machine?
A.
RPC
B. RSH
C. SSH
D. SSL
Answer: A
CompTIA Practice Exam SY0-401 Exam Tests exam
dumps
Explanation:
Remote Procedure Call (RPC) is a programming
interface that allows a remote computer to run
programs on a local
machine.
NO.6 A system administrator has been instructed by the head of
security to protect their data at-rest.
Which of the following would provide
the strongest protection?
A. Prohibiting removable media
B. Incorporating
a full-disk encryption system
C. Biometric controls on data center entry
points
D. A host-based intrusion detection system
Answer: B
CompTIA
certification SY0-401 Exam Tests PDF VCE
Explanation:
Full disk
encryption can be used to encrypt an entire volume with 128-bit encryption. When
the
entire volume is encrypted, the data is not accessible to someone who
might boot another operating
system in an attempt to bypass the computer's
security. Full disk encryption is sometimes referred to
as hard drive
encryption. This would be best to protect data that is at rest.
NO.7
Which of the following firewall rules only denies DNS zone transfers?
A. deny
udp any any port 53
B. deny ip any any
C. deny tcp any any port 53
D.
deny all dns packets
Answer: C
CompTIA exam simulations SY0-401 Exam
Tests answers real questions
Explanation:
DNS operates over TCP and UDP
port 53. TCP port 53 is used for zone transfers.
NO.8 RADIUS provides
which of the following?
A. Authentication, Authorization, Availability
B.
Authentication, Authorization, Auditing
C. Authentication, Accounting,
Auditing
D. Authentication, Authorization, Accounting
Answer:
D
CompTIA braindump SY0-401 Exam Tests test
ITbraindumps's senior team of experts has developed training materials for CompTIA SY0-401 Exam Tests.Through ITbraindumps's training and learning passing CompTIA certification SY0-401 Exam Tests will be very simple. ITbraindumps can 100% guarantee you pass your first time to participate in the CompTIA certification SY0-401 Exam Tests successfully. And you will find that our practice questions will appear in your actual exam. When you choose our help, ITbraindumps can not only give you the accurate and comprehensive examination materials, but also give you a year free update service.
The appropriate selection of training is a guarantee of success. However, the choice is very important, ITbraindumps popularity is well known, there is no reason not to choose it. Of course, Give you the the perfect training materials, if you do not fit this information that is still not effective. So before using ITbraindumps training materials, you can download some free questions and answers as a trial, so that you can do the most authentic exam preparation. This is why thousands of candidates depends ITbraindumps one of the important reason. We provide the best and most affordable, most complete exam training materials to help them pass the exam.
SY0-401 Exam Tests provided by ITbraindumps are tested through practice, and are the most correct and the newest practical SY0-401 Exam Tests dumps. Our ITbraindumps can provide accurate SY0-401 Exam Tests based on extensive research and the experience of real world to make you pass SY0-401 Exam Tests in a short time. If you purchase our SY0-401 Exam Tests, we will offer free update service within one year.
Exam Code: SY0-401
Exam TestsExam Name: CompTIA Security+ Certification
One year free update, No help, Full refund!
SY0-401 Exam Tests PDF VCE Total Q&A: 1150 Questions and Answers
Last Update: 12-01,2015
SY0-401 Exam Tests Test Questions Detail: SY0-401 Exam Tests PDF VCE
ITbraindumps offer the latest CAT-221 exam material and high-quality C2040-440 pdf questions & answers. Our 1z1-462 VCE testing engine and 400-101 study guide can help you pass the real exam. High-quality P2140-022 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.
SY0-401 Exam Tests: http://examcollection.it2blog.com/2015/04/16/the-latest-comptia-certification-sy0-401-exam-training-methods/
Article Link: http://www.itbraindumps.com/SY0-401_exam.html