25 Random Security+ Questions

Posted by:

|

On:

|

0%

25 Random Questions Security+

1 / 25

Which of the following is the MOST important reason for maintaining an up-to-date asset inventory?

2 / 25

Which of the following is the MOST effective way to promote a culture of security within an organization?

3 / 25

Which of the following is the MOST effective method to prevent data leakage through mobile device cameras in sensitive areas?

4 / 25

An attacker changes the MAC address of their device to match the MAC address of an authorized device on a network, allowing them to bypass access controls. What type of attack is this?

5 / 25

A company operating in the European Union has discovered a data breach affecting customer personal information. According to GDPR, within what timeframe must the company notify the relevant supervisory authority?

6 / 25

During a major security incident, which of the following is the MOST important consideration when communicating with external stakeholders?

7 / 25

A security analyst is investigating a potential data breach. Which of the following tools would be MOST useful for capturing and analyzing network traffic related to the incident?

8 / 25

An organization wants to implement a solution that can automatically detect and respond to security incidents across their entire IT infrastructure. Which of the following would be MOST suitable for this purpose?

9 / 25

Which of the following log management practices is MOST effective in maintaining the chain of custody for log files that may be used as evidence in legal proceedings?

10 / 25

Which of the following best describes the primary purpose of a Public Key Infrastructure (PKI)?

11 / 25

Which of the following best describes the concept of social engineering?

12 / 25

Which of the following best describes vishing?

13 / 25

A security administrator needs to implement a solution to protect against cross-site scripting (XSS) attacks on the organization’s web applications. Which of the following would be the MOST comprehensive approach?

14 / 25

A security team wants to implement a solution that will automatically provision and configure security tools across multiple cloud environments based on predefined security policies. Which of the following BEST describes this approach?

15 / 25

A company is implementing a new identity management system. Which of the following is the BEST practice for managing user accounts when an employee leaves the organization?

16 / 25

A security analyst is reviewing the organization’s asset management practices and notices that cloud-based assets are not consistently tracked. What is the MOST significant risk associated with this oversight?

17 / 25

What is the purpose of an approval process in change management?

18 / 25

Which of the following threat actors poses the greatest risk of data exfiltration due to their authorized access to systems?

19 / 25

What is the main advantage of using Online Certificate Status Protocol (OCSP) over Certificate Revocation Lists (CRLs)?

20 / 25

An organization’s network administrator notices that the company’s DNS server is resolving domain names to incorrect IP addresses. Upon further investigation, it’s discovered that the DNS cache has been altered. What type of attack has likely occurred?

21 / 25

Which cryptographic technique is best suited for providing non-repudiation in digital communications?

22 / 25

During a security audit of a financial institution, the auditor discovers that the organization is not conducting regular security awareness training for its employees. Which of the following represents the MOST significant risk associated with this finding?

23 / 25

What is the purpose of a key escrow system in PKI?

24 / 25

A security analyst is implementing data protection measures for a system that processes sensitive customer information. Which of the following techniques would be MOST effective in protecting data from unauthorized access while it is being transmitted over a network?

25 / 25

A security analyst wants to create a script that will automatically collect and analyze logs from multiple sources to detect potential security incidents. Which of the following programming languages is BEST suited for this task?

Your score is

Exit

One response to “25 Random Security+ Questions”