CompTIA Security+ Practice Test of the Day 260226

Question 1

Your organization recently experienced multiple credential-harvesting attempts targeting remote employees. A security administrator at a mid-sized company is tasked with improving user awareness to reduce successful phishing attacks. Leadership wants measurable improvement and proof that employees understand how to recognize and report phishing attempts. The administrator decides to implement a formal security awareness initiative. Which of the following actions would BEST support this objective?

A. Deploy a new email gateway with advanced anti-phishing filtering B. Conduct recurring simulated phishing campaigns and track user reporting metrics C. Enforce complex password requirements through Group Policy D. Block all external email attachments at the firewall

Question 2

An analyst in a SOC observes that several employees have recently connected unauthorized USB drives to corporate laptops in a hybrid work environment. While no malware was detected, leadership is concerned about insider threats and unintentional data exfiltration. The security team wants to strengthen awareness without immediately implementing strict technical enforcement controls. Which of the following is the MOST appropriate security awareness action?

A. Immediately disable all USB ports on corporate endpoints B. Update the incident response plan to include removable media procedures C. Provide targeted training on removable media risks and operational security practices D. Deploy endpoint detection and response (EDR) software

Question 3

Your company has expanded to support a fully remote workforce across multiple geographic regions. A security administrator notices an increase in risky behavior, including employees discussing sensitive projects over unsecured public Wi-Fi and failing to use company VPN services. Management requests a proactive awareness strategy tailored to hybrid and remote environments. Which of the following should the administrator implement FIRST?

A. Annual compliance acknowledgment forms requiring employee signatures B. Situational awareness training focused on secure remote work practices C. Replacement of all VPN infrastructure with a zero trust network architecture D. Disciplinary action for employees observed using public Wi-Fi

Question 4

An organization recently implemented a formal process for employees to report suspicious emails. However, the SOC notices that many users still forward phishing emails to colleagues instead of reporting them through the official mechanism. Leadership wants to reinforce correct reporting behavior while improving monitoring effectiveness. Which of the following actions would BEST address this issue?

A. Configure automatic mailbox deletion of suspected phishing emails B. Send a company-wide reminder detailing the proper reporting process and consequences of non-compliance C. Integrate a phishing-reporting button into the email client and reinforce its use through recurring communication D. Increase firewall logging levels for SMTP traffic

Question 5

A security administrator at a mid-sized company is developing a new security awareness program after a recent insider threat incident involving unauthorized sharing of confidential design documents. The investigation determined that the employee did not act maliciously but failed to understand data handling expectations. Leadership wants to reduce unintentional insider threats through improved awareness. Which of the following should the administrator implement to BEST address this issue?

A. Deploy data loss prevention (DLP) software across all endpoints B. Provide role-based training focused on data classification and handling procedures C. Require annual nondisclosure agreement (NDA) re-signatures D. Restrict access to all design repositories to executive leadership only

Question 6

An analyst in a SOC notices a pattern of employees clicking on urgent “invoice correction” emails that create a sense of panic and time pressure. After analysis, the messages are confirmed as social engineering attempts leveraging emotional manipulation. The security team wants to strengthen users’ ability to identify these tactics. Which of the following training enhancements would be MOST effective?

A. Technical instruction on SMTP header analysis B. Awareness modules explaining common social engineering psychological triggers C. Mandatory password expiration every 30 days D. Deployment of multifactor authentication (MFA) for financial systems

Question 7

Your company operates in a regulated industry and must demonstrate ongoing security awareness training. During an audit, it is discovered that training was conducted once during onboarding but never reinforced. Several employees were unaware of recent policy updates regarding hybrid work security expectations. Which of the following would BEST demonstrate compliance while improving overall awareness?

A. Require employees to sign a statement confirming they understand all policies B. Implement recurring security awareness training with documented completion tracking C. Conduct a one-time company-wide email outlining policy changes D. Increase monitoring of remote user VPN connections

Question 8

An organization has introduced a formal suspicious message reporting channel, but employees hesitate to report potential phishing emails because they fear disciplinary action if they are wrong. Leadership wants to increase early reporting to reduce dwell time of threats. Which of the following is the BEST approach?

A. Implement a strict disciplinary policy for employees who fail to report phishing emails B. Provide anonymous reporting options and emphasize a no-fault reporting culture C. Automatically block all emails containing hyperlinks D. Publicly identify employees who incorrectly report legitimate emails

Question 9

A security administrator at a mid-sized company is reviewing the results of a recent phishing simulation campaign. The results show that while most employees did not click the malicious link, many failed to report the email through the official reporting channel. Leadership wants to improve early detection of real threats and reinforce proper reporting behavior. Which of the following actions would BEST improve the effectiveness of the awareness program?

A. Increase the difficulty of future phishing simulations B. Provide immediate feedback and micro-training to users who fail to report simulated phishing emails C. Automatically enroll all employees in advanced malware analysis training D. Publicly share a list of employees who did not report the simulation

Question 10

An analyst in a SOC observes anomalous behavior involving an employee accessing sensitive HR records outside normal business hours from an unfamiliar geographic location. Initial investigation reveals the employee was unaware that accessing such records remotely without VPN usage violated operational security guidelines. Leadership wants to reduce similar risky and unexpected behavior. Which of the following awareness measures would BEST address this issue?

A. Conduct situational awareness training focused on anomalous behavior recognition and secure remote access procedures B. Terminate the employee to deter future policy violations C. Remove remote access privileges for all HR personnel D. Implement full packet capture monitoring for all remote connections

CompTIA Security+ Practice Test of the Day 260226

ByThe Test Master

Related Post

CompTIA Security+ Practice Test of the Day 260410

CompTIA Security+ Practice Test of the Day 260409

CompTIA Security+ Practice Test of the Day 260408

Leave a Reply Cancel reply

You missed

CEH v13 Domain 3.3 Practice Test 002

CEH v13 Domain 3.2 Practice Test 002

CEH v13 Domain 3.1 Practice Test 002

CEH v13 Domain 2.3 Practice Test 002