Study question Group2

Question 1

What does the acronym SYO-501 stand for?

Answer 1

CompTIA Security+ SY0-501

Question 2

True or False: The SYO-501 exam focuses solely on technical skills.

Answer 2

False

Question 3

Which of the following is a key objective of the SYO-501 exam? (A) Risk management (B) Web development (C) Database design

Answer 3

A) Risk management

Question 4

Fill in the blank: The __________ model is commonly used to understand the layers of security in a network.

Answer 4

CIA

Question 5

What is the primary purpose of a firewall?

Answer 5

To control incoming and outgoing network traffic based on predetermined security rules.

Question 6

True or False: Social engineering attacks rely on exploiting human psychology.

Answer 6

True

Question 7

Which of the following is NOT a type of malware? (A) Virus (B) Worm (C) Firewall

Answer 7

C) Firewall

Question 8

What does the term ‘phishing’ refer to?

Answer 8

A fraudulent attempt to obtain sensitive information by disguising as a trustworthy entity.

Question 9

Multiple choice: What is the purpose of encryption? (A) To speed up data processing (B) To protect data confidentiality (C) To improve data access speed

Answer 9

B) To protect data confidentiality

Question 10

What is an Intrusion Detection System (IDS)?

Answer 10

A device or software application that monitors network or system activities for malicious activities or policy violations.

Question 11

True or False: A VPN provides a secure connection over the internet.

Answer 11

True

Question 12

Fill in the blank: __________ is the process of verifying the identity of a user or device.

Answer 12

Authentication

Question 13

Which security principle involves the least amount of privilege necessary for users? (A) Least Privilege (B) Maximum Privilege (C) Total Control

Answer 13

A) Least Privilege

Question 14

What does the term ‘DDoS’ stand for?

Answer 14

Distributed Denial of Service

Question 15

Multiple choice: Which of the following is a common type of authentication? (A) Password (B) IP address (C) MAC address

Answer 15

A) Password

Question 16

What is the main goal of penetration testing?

Answer 16

To identify vulnerabilities in a system before they can be exploited by attackers.

Question 17

True or False: Two-factor authentication adds an extra layer of security beyond just a password.

Answer 17

True

Question 18

Fill in the blank: __________ is the act of taking unauthorized control of a computer system.

Answer 18

Hacking

Question 19

Which of the following is a risk associated with cloud computing? (A) Increased accessibility (B) Data breaches (C) Cost savings

Answer 19

B) Data breaches

Question 20

What does ‘patch management’ involve?

Answer 20

The process of managing updates for software applications and technologies.

Question 21

Multiple choice: Which of the following is a type of physical security control? (A) Firewalls (B) Security cameras (C) Antivirus software

Answer 21

B) Security cameras

Question 22

True or False: A security policy outlines the rules and procedures for maintaining security within an organization.

Answer 22

True

Question 23

What is the primary function of an antivirus program?

Answer 23

To detect and remove malicious software from computers and networks.

Question 24

Fill in the blank: __________ refers to the practice of monitoring and analyzing network traffic for suspicious activity.

Answer 24

Network security monitoring

Question 25

Which of the following best describes a 'zero-day' vulnerability?

Answer 25

A security flaw that is unknown to the vendor and for which no patch has been released.

Question 26

Multiple choice: What is the primary purpose of a security audit? (A) To assess compliance with security policies (B) To improve system performance (C) To enhance user experience

Answer 26

A) To assess compliance with security policies