CompTIA Security+ Practice Test of the Day 260214

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on subdomain 4.1 (Given a scenario, apply common security techniques to computing resources.) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

CompTIA Security+ Practice Test of the Day 260214

10 questions • Single best answer

Question 1

A security engineer hardens 50 new workstations before deployment by disabling unused services, applying approved configurations, and documenting the resulting setup as the mandatory reference all future deployments must match. What is this reference called?

A. Change management record B. Security audit log C. Secure baseline D. Configuration policy

Question 2

A law firm issues company-owned smartphones to attorneys. The firm retains full control over security policies and approved apps, but allows employees to also use the devices for personal purposes such as personal email and social media. Which mobile deployment model is this?

A. BYOD B. CYOD C. COPE D. MDM-managed only

Question 3

A wireless network engineer walks each floor of a multi-story office building with a measurement tool to document signal strength, coverage gaps, and interference sources before finalizing the access point placement plan. What activity is she performing?

A. Heat map generation B. Wireless intrusion detection C. Site survey D. RF spectrum analysis

Question 4

A developer submits code for review. An automated tool analyzes the source code without executing it, scanning for insecure functions, hardcoded credentials, and injection vulnerabilities before the code is compiled or deployed. What type of testing is this?

A. Dynamic analysis B. Fuzzing C. Package monitoring D. Static code analysis

Question 5

An employee attempts to install an app on a company-issued Android device by downloading an APK file from a third-party website rather than the official app store. The MDM policy blocks this action. What mobile security risk does this behavior represent?

A. Jailbreaking B. Side loading C. BYOD policy violation D. Malware injection via Bluetooth

Question 6

A QA team tests a web application's login form by submitting special characters, SQL fragments, and oversized strings to verify that the application rejects malformed input before it reaches the database layer. What application security control are they validating?

A. Code signing B. Secure cookies C. Input validation D. Static code analysis

Question 7

A security team needs to test an untrusted third-party library in a controlled environment without risking the integrity of production systems or other applications. Which technique should they implement?

A. Package monitoring B. Static code analysis of the library C. Sandboxing D. Code signing verification

Question 8

An enterprise deploys WPA3 with AAA/RADIUS authentication on its corporate wireless network. Which authentication benefit does this combination provide over WPA2-Personal with a shared passphrase?

A. It encrypts all wireless traffic using AES-256 rather than TKIP B. It allows all devices to authenticate without any credentials C. It provides per-user authentication with individual credentials rather than a shared secret D. It prevents devices from connecting via Bluetooth instead of Wi-Fi

Question 9

A hospital's biomed team deploys wireless patient monitoring IoT devices running real-time operating systems (RTOS). The devices cannot be patched because the vendor no longer provides firmware updates. What is the MOST important security measure for these devices?

A. Enrolling them in a mobile device management (MDM) solution B. Performing dynamic analysis on the device firmware C. Applying compensating controls such as network segmentation to limit their exposure D. Configuring them to use WPA3 enterprise wireless authentication

Question 10

A mobile device administrator configures all company smartphones to automatically enforce screen lock after 30 seconds, require a minimum 8-character PIN, enable remote wipe, and install only approved applications. Which mobile security capability enables this centralized policy enforcement?

A. Sandboxing B. Mobile device management (MDM) C. Application allow listing D. Static code analysis

Take more CompTIA Security+ practice tests

CompTIA Security+ Practice Test of the Day 260214

Related Posts