CompTIA Security+ Practice Test of the Day 080425

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 2.5 (Explain the purpose of mitigation techniques used to secure the enterprise) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

CompTIA Security+ Practice Test of the Day 080425

10 questions • Single best answer

Question 1

After a ransomware attack spreads from the finance department to the entire corporate network, a security architect recommends dividing the network into isolated zones so that a future compromise in one area cannot spread freely to others. Which mitigation technique addresses this?

A. Patching B. Segmentation C. Decommissioning D. Application allow list

Question 2

A security policy requires that users be granted only the minimum permissions necessary to perform their job functions. An analyst who only needs to read reports should not have database write access. Which mitigation principle is being applied?

A. Isolation B. Segmentation C. Configuration enforcement D. Least privilege

Question 3

A security team configures endpoint systems to only run applications that appear on a pre-approved list. Any application not on the list — including newly downloaded executables — is blocked from running. Which mitigation technique is described?

A. Configuration enforcement B. Application allow list C. Segmentation D. Monitoring

Question 4

A vulnerability scan identifies that 200 workstations are running an outdated browser with a known critical vulnerability. The security team deploys patches to all affected systems within 24 hours, closing the exploitation window. Which mitigation technique did the team use?

A. Decommissioning B. Monitoring C. Patching D. Hardening

Question 5

A security engineer installs and configures an endpoint protection platform (EPP) on all company workstations. The EPP provides antivirus, anti-malware, and behavioral detection capabilities that monitor and protect each endpoint from known and unknown threats. Which hardening technique is described?

A. Disabling ports/protocols B. Default password changes C. Installation of endpoint protection D. Removal of unnecessary software

Question 6

An administrator configures Windows Defender Firewall on all employee laptops to block all inbound connections except those explicitly permitted by policy, providing protection even when laptops are used outside the corporate network. Which hardening technique is described?

A. Segmentation B. Host-based firewall C. Network-based IPS D. Access control list

Question 7

A compliance audit reveals that servers in production are running with varying security configurations — some have unnecessary services enabled, others have weak password policies. The security team implements a tool that continuously checks each server's configuration against the approved security baseline and remediates any drift. Which mitigation technique is described?

A. Patching B. Monitoring C. Configuration enforcement D. Least privilege

Question 8

The security team identifies a Windows XP workstation connected to the OT network that no longer receives patches and cannot be upgraded due to hardware constraints. After assessing risk, the team decides to remove it from operation entirely. Which mitigation technique does this represent?

A. Isolation B. Segmentation C. Patching D. Decommissioning

Question 9

A security team disables Telnet, FTP, and SMBv1 on all servers and blocks their corresponding ports at the host-based firewall level. These services are not used and their continued presence creates unnecessary risk. Which hardening technique is described?

A. Removal of unnecessary software B. Default password changes C. Disabling ports/protocols D. Configuration enforcement

Question 10

A compromised workstation is detected on the corporate network. To prevent the malware from communicating with its C2 server or spreading laterally, the security team places the system in a dedicated VLAN with no access to other internal systems or the internet, while keeping it online for forensic analysis. Which mitigation technique is described?