● CompTIA Security+ (Security Plus) Exam Materials

Hello Dears, these questions were captured from the real CompTIA Security+ (Security Plus) Exam, They can certainly help you prepare for the exam; however, they are not considered a 100% validated or fully corrected dump and passing cannot be guaranteed, for this reason, we are offering this material at a lower price, please note that this clarification applies only to the CompTIA Security+ (Security Plus) Exam, All other dumps available on our website are fully guaranteed, once the dump is fully prepared and validated, we will write another comment, Good luck with your exam preparation.




Question #1
Comment Image Comment Image Comment Image

Which of the following is an example of a false negative vulnerability detection in a scan report? (Choose one answer)

  • A. A vulnerability that does not actually exist
  • B. A vulnerability that has already been remediated
  • C. A result that shows no known vulnerabilities
  • D. A zero-day vulnerability with a known remediation
Question #2
Comment Image Comment Image Comment Image

The marketing department set up its own project management software without telling the appropriate departments. Which of the following describes this scenario? (Choose one answer)

  • A. Shadow IT
  • B. Insider threat
  • C. Data exfiltration
  • D. Service disruption
Question #3
Comment Image Comment Image Comment Image

An administrator installs an SSL certificate on a new system. During testing, errors indicate that the certificate is not trusted. The administrator has verified with the issuing CA and has validated the private key. Which of the following should the administrator check for next? (Choose one answer)

  • A. If the wildcard certificate is configured
  • B. If the certificate signing request is valid
  • C. If the root certificate is installed
  • D. If the public key is configured
Question #4
Comment Image Comment Image Comment Image

A security operations center determines that the malicious activity detected on a server is normal. Which of the following activities describes the act of ignoring detected activity in the future? (Choose one answer)

  • A. Tuning
  • B. Aggregating
  • C. Quarantining
  • D. Archiving
Question #5
Comment Image Comment Image Comment Image

Which of the following should be used to prevent changes to system-level data? (Choose one answer)

  • A. NIDS
  • B. DLP
  • C. NAC
  • D. FIM
Question #6
Comment Image Comment Image Comment Image

Which of the following steps in the incident response process involves placing a system on a private virtual local area network (VLAN)? (Choose one answer)

  • A. Containment
  • B. Identification
  • C. Investigation
  • D. Eradication
Question #7
Comment Image Comment Image Comment Image

Which of the following needs to be implemented to create a detection rule for multiple login failures on a security information and event management (SIEM) at the host level? (Choose one answer)

  • A. Web application firewall (WAF)
  • B. Endpoint detection and response (EDR)
  • C. Load balancer
  • D. Dynamic Host Configuration Protocol (DHCP) server
Question #8
Comment Image Comment Image Comment Image

Which of the following is a type of preventive control? (Choose one answer)

  • A. SIEM
  • B. Honeypot
  • C. ACL
  • D. Video surveillance
Question #9
Comment Image Comment Image Comment Image

A security architect wants to prevent employees from receiving malicious attachments by email. Which of the following functions should the chosen solution do? (Choose one answer)

  • A. Apply IP address reputation data.
  • B. Tap and monitor the email feed.
  • C. Scan email traffic inline.
  • D. Check SPF records.
Question #10
Comment Image Comment Image Comment Image

A company decided to reduce the cost of its annual cyber insurance policy by removing the coverage for ransomware attacks. Which of the following analysis elements did the company most likely use in making this decision? (Choose one answer)

  • A. MTTR
  • B. RTO
  • C. ARO
  • D. MTBF