CompTIA Security+ Practice Test of the Day 070725

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 3.1 (Compare and contrast security implications of different architecture models) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

CompTIA Security+ Practice Test of the Day 070725

10 questions • Single best answer

Question 1

A company migrates its web application to a public cloud provider. The security team asks who is responsible for patching the underlying hypervisor and physical servers. The cloud provider responds that these are their responsibility, while the company manages the OS and applications. Which cloud concept does this arrangement represent?

A. Elasticity B. Shared responsibility model C. Serverless architecture D. Risk transference

Question 2

A development team runs code in a cloud environment without managing any servers, operating systems, or runtime environments. Functions execute on demand and the team is billed only for the compute time consumed. Which architecture model is described?

A. Containerization B. Microservices C. Serverless D. On-premises

Question 3

An organization packages each application with its own OS libraries and dependencies into a portable unit that can run consistently across development, testing, and production environments. Which architecture model is described?

A. Virtualization B. Containerization C. Serverless D. Embedded systems

Question 4

A government facility processes classified data on systems that have no network connections of any kind — no wired, wireless, or Bluetooth interfaces. Physical access is strictly controlled. Which infrastructure security concept is described?

A. Logical segmentation B. Software-defined networking C. Physical isolation (air gap) D. Zero Trust

Question 5

A manufacturing plant uses a network of sensors, PLCs, and SCADA servers to monitor and control industrial processes. The security team is evaluating these systems but notes they cannot be patched on the same schedule as IT systems due to operational constraints. Which architecture type is described?

A. Serverless B. ICS/SCADA C. Containerization D. Microservices

Question 6

A cloud security architect is evaluating the risk of two virtual machines on the same physical host sharing the same memory allocation pool. If VM isolation breaks down, one VM could access another's memory contents. Which cloud architecture security concern is described?

A. VM escape B. Shared responsibility C. Resource reuse D. Containerization risk

Question 7

An organization deploys smart thermostats, IP cameras, and door sensors throughout its office building, all connected to the corporate network. A security assessment flags these devices as a concern because they run minimal OS versions with limited security controls. Which architecture type creates this risk?

A. Serverless B. RTOS C. IoT D. Microservices

Question 8

An application is architected as dozens of small, independently deployable services — each responsible for a single function such as authentication, payment processing, or inventory management. Each service communicates via APIs and can be updated independently. Which architecture model is described?

A. Serverless B. Containerization C. Microservices D. Monolithic

Question 9

A hospital runs a patient monitoring system on an OS that guarantees processing of critical alerts within a maximum of 50 milliseconds regardless of system load. Missing this timing window could have life-safety consequences. Which architecture type is described?

A. Embedded system B. RTOS C. IoT D. ICS/SCADA

Question 10

A CISO is evaluating whether to keep a critical application on-premises or migrate to a cloud provider. One advantage noted is that migrating to the cloud shifts responsibility for infrastructure failures and availability incidents to the provider, covered by their SLA. Which architecture consideration does this represent?