CompTIA Security+ Practice Test of the Day 060625

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. A security administrator at a hybrid enterprise needs to harden cloud-based Linux servers used for processing sensitive financial data. Which of the following would be the BEST step to include in the initial hardening process?

A. Enable TLS 1.0 and older cipher suites for compatibility

B. Disable unnecessary services and remove unused software

C. Configure port forwarding to simplify remote access

D. Install unsigned software packages for faster deployment

Previous

Next

#2. A vulnerability management process includes confirming findings. Which of the following helps eliminate false positives?

A. Applying compensating controls

B. Prioritizing according to CVSS scores

C. Performing validation scans

D. Reviewing vendor contracts

Previous

Next

#3. A security engineer is selecting a mobile device management (MDM) deployment model for a hospital that must comply with data privacy regulations. Which model provides the MOST control over devices and data?

A. Choose your own device (CYOD)

B. Bring your own device (BYOD)

C. Corporate-owned, personally enabled (COPE)

D. Corporate-owned, locked (COL)

Previous

Next

#4. A cloud administrator is automating user provisioning through a security orchestration process. Which benefit does automation provide in this case?

A. Increases single points of failure

B. Enforces consistent access policies

C. Adds manual approval steps

D. Reduces overall visibility

Previous

Next

#5. An attacker is attempting to access a network by connecting rogue wireless devices. Which mitigation technique should the administrator deploy?

A. Endpoint Detection and Response (EDR)

B. Data Loss Prevention (DLP)

C. Network Access Control (NAC)

D. Dynamic DNS

Previous

Next

#6. An administrator is configuring SIEM alert thresholds to reduce false positives. Which process is being performed?

A. Tuning

B. Containment

C. Quarantine

D. Forensic acquisition

Previous

Next

#7. A security administrator at a large financial firm needs to securely monitor wireless network coverage in a multi-floor office building. Which of the following tools or techniques should be used?

A. NetFlow analyzer

B. SIEM dashboards

C. Heat maps

D. Network packet captures

Previous

Next

#8. During a compliance audit, a company is required to demonstrate that retired servers have had their data securely wiped. What should the company provide?

A. System architecture diagrams

B. Certificate of destruction

C. Patch management records

D. Firewall rule sets

Previous

Next

#9. An analyst in a SOC is tuning alerts for unexpected outbound DNS traffic. What is this type of traffic often associated with?

A. Data exfiltration

B. Input validation errors

C. Port scanning

D. Denial of service (DoS)

Previous

Next

#10. A security engineer configures TLS to secure remote administrative access to servers. What is the primary benefit of using TLS for this purpose?

A. Lower latency

B. Forward secrecy

C. Secure key exchange and encrypted communication

D. Network segmentation

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.To view answers for today’s questions, expand the Answers accordion below.