SY0-601 Free Practice Test

- (Exam Topic 5)
A backdoor was detected on the containerized application environment. The investigation detected that a zero-day vulnerability was introduced when the latest container image version was downloaded from a public registry. Which of the following is the BEST solution to prevent this type of incident from occurring again?

1. A. Enforce the use of a controlled trusted source of container images
2. B. Deploy an IPS solution capable of detecting signatures of attacks targeting containers
3. C. Define a vulnerability scan to assess container images before being introduced on the environment
4. D. Create a dedicated VPC for the containerized environment

Correct Answer: D

- (Exam Topic 3)
A Chief Security Office's (CSO's) key priorities are to improve preparation, response, and recovery practices to minimize system downtime and enhance organizational resilience to ransomware attacks. Which of the following would BEST meet the CSO's objectives?

1. A. Use email-filtering software and centralized account management, patch high-risk systems, and restrict administration privileges on fileshares.
2. B. Purchase cyber insurance from a reputable provider to reduce expenses during an incident.
3. C. Invest in end-user awareness training to change the long-term culture and behavior of staff and executives, reducing the organization's susceptibility to phishing attacks.
4. D. Implement application whitelisting and centralized event-log management, and perform regular testing and validation of full backups.

Correct Answer: B

- (Exam Topic 1)
The Chief Information Security Officer wants to prevent exfiltration of sensitive information from employee cell phones when using public USB power charging stations. Which of the following would be the BEST solution to Implement?

1. A. DLP
2. B. USB data blocker
3. C. USB OTG
4. D. Disabling USB ports

Correct Answer: A
USB data blockers are good, but they're reliant on the employee actually using them. A DLP solution such as MobileIron forces compliance, by locking corporate resources behind a secure application. For example: Users any mobile device policy, such as BYOD, CYOD, and COPE. If they want to access their corporate email on their phone. They will need to sign into the MobileIron application, in order to be granted visibility to their corporate email account. Since the emails are being read/sent through the MobileIron application. Safeguards can be applied even on an outside network-mobile level. If an employee attempts to send a customers social security number, the MobileIron will either block it, alert it, or both, contingent on how the company setup the MobileIron service to work.

- (Exam Topic 1)
A security policy states that common words should not be used as passwords. A security auditor was able to perform a dictionary attack against corporate credentials Which of the following controls was being violated?

1. A. Password complexity
2. B. Password history
3. C. Password reuse
4. D. Password length

Correct Answer: B

- (Exam Topic 3)
Which of the following would be the BEST method for creating a detailed diagram of wireless access points and hot-spots?

1. A. Footprinting
2. B. White-box testing
3. C. A drone/UAV
4. D. Pivoting

Correct Answer: A