SY0-601 Free Practice Test

- (Exam Topic 3)
Which of the following is MOST likely to outline the roles and responsibilities of data controllers and data processors?

1. A. SSAE SOC 2
2. B. PCI DSS
3. C. GDPR
4. D. ISO 31000

Correct Answer: C

- (Exam Topic 2)
A user forwarded a suspicious email to the security team, Upon investigation, a malicious URL was discovered. Which of the following should be done FIRST to prevent other users from accessing the malicious URL?

1. A. Configure the web content filter for the web address.
2. B. Report the website to threat intelligence partners
3. C. Set me SIEM to alert for any activity to the web address.
4. D. Send out a corporate communication to warn all users Of the malicious email.

Correct Answer: A

- (Exam Topic 1)
Which of the following would be the BEST way to analyze diskless malware that has infected a VDI?

1. A. Shut down the VDI and copy off the event logs.
2. B. Take a memory snapshot of the running system.
3. C. Use NetFlow to identify command-and-control IPs.
4. D. Run a full on-demand scan of the root volume.

Correct Answer: B

- (Exam Topic 3)
A security engineer obtained the following output from a threat intelligence source that recently performed an attack on the company's server:

Which of the following BEST describes this kind of attack?

1. A. Directory traversal
2. B. SQL injection
3. C. API
4. D. Request forgery

Correct Answer: D

- (Exam Topic 5)
A business is looking for a cloud service provider that offers a la carte services, including cloud backups, VM elasticity, and secure networking. Which of the following cloud service provider types should
business engage?

1. A. A laaS
2. B. PaaS
3. C. XaaS
4. D. SaaS

Correct Answer: B