SY0-601 Free Practice Test

- (Exam Topic 2)
A security engineer is deploying a new wireless for a company. The company shares office space with multiple tenants. Which of the following should the engineer configured on the wireless network to ensure that confidential data is not exposed to unauthorized users?

1. A. EAP
2. B. TLS
3. C. HTTPS
4. D. AES

Correct Answer: C

- (Exam Topic 3)
hich of the following would be MOST effective to contain a rapidly spreading attack that is affecting a large number of organizations?

1. A. Machine learning
2. B. DNS sinkhole
3. C. Blocklist
4. D. Honeypot

Correct Answer: C

- (Exam Topic 3)
A systems administrator is looking for a solution that will help prevent OAuth applications from being leveraged by hackers to tick users into authonzing the use of their corporate credentials. Which of the following BEST describes this solution?

1. A. CASB
2. B. UEM
3. C. WAF
4. D. VPC

Correct Answer: B

- (Exam Topic 3)
Which of the following organizational policies are MOST likely to detect fraud that is being conducted by existing employees? (Select TWO).

1. A. Offboarding
2. B. Mandatory vacation
3. C. Job rotation
4. D. Background checks
5. E. Separation of duties
6. F. Acceptable use

Correct Answer: BC

- (Exam Topic 4)
A network administrator al a large organization | reviewing methods lo improve the securty of the wired LAN, Any seourty improvement must be centrally managed and alow corporate-owned devices lo have access to the intranet bul limit others to Internet access only. Which of the following should the adeninistrator recommend?

1. A. 802.1X ullizing the current PKI ifrastructure
2. B. $50 to authenticate comorate users
3. C. MAC address filtering with ACLs on the router
4. D. PAM for user account management

Correct Answer: A