CompTIA Security+ Practice Test of the Day 260426

By /

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 1.2 (Summarize fundamental security concepts) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

Recommended read: Ultimate CompTIA Security+ Study Guide (2026)

CompTIA Security+ Practice Test of the Day 260426
10 questions • Single best answer
Question 1
A security architect at a hospital ensures only treating physicians can view patient records by implementing role-based access controls and encrypting data at rest. Which component of the CIA triad is being directly protected?
    Question 2
    A financial institution deploys file integrity monitoring on its core banking servers. Any unauthorized modification to system binaries or configuration files triggers an alert and creates a tamper-evident log entry. Which CIA triad component is being directly protected?
      Question 3
      An e-commerce company deploys redundant web servers across two geographic regions with a load balancer distributing traffic. During a DDoS attack, traffic is rerouted and customers continue completing purchases without interruption. Which CIA triad component was prioritized by this architecture?
        Question 4
        A financial services firm requires users to sign all transactions using their private key, producing a cryptographic proof that a specific user authorized the transaction and cannot credibly deny having done so. Which security concept does this implement?
          Question 5
          A remote employee connects to the corporate VPN by providing her username, password, and a TOTP code. The system grants access only to resources required for her role and logs all connection attempts for security review. Which security framework is being implemented?
            Question 6
            A user attempts to access a cloud application. Before access is granted, the system evaluates the user's device health, location, role, and current threat context — then dynamically allows, blocks, or challenges the request at the boundary. Which Zero Trust component performs this enforcement action?
              Question 7
              Before implementing the NIST Cybersecurity Framework, a security team conducts a structured evaluation comparing the organization's current security capabilities against the framework's requirements — documenting where controls exist, where they are absent, and what remediation is needed. Which security activity does this represent?
                Question 8
                A security team deploys a simulated server that appears to be a legitimate production database but contains only fabricated data and serves no real business function. Any connection to it is automatically flagged as suspicious and triggers an immediate SOC alert. Which deception technology is this?
                  Question 9
                  A data center entrance requires visitors to enter a small enclosed area between two locked doors. The outer door must close and lock before the inner door can open — preventing multiple people from entering simultaneously. Which physical security control is this?
                    Question 10
                    A database administrator creates a fake admin credential that has never been used in production and configures an alert to fire the instant any login attempt is made using that account. Which deception technology does this represent?
                      Answered: 0/10
                      Cybersecurity Acronyms Desk Mat

                      Tired of Googling acronyms while practicing/studying?
                      Keep them all under your keyboard.

                      📋 GET_THE_DESK_MAT

                      Take more CompTIA Security+ practice tests

                      Related Posts

                      Leave a Comment

                      Your email address will not be published. Required fields are marked *

                      Scroll to Top