CompTIA Security+ Practice Test of the Day 260424

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 1.1 (Compare and contrast various types of security controls) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

CompTIA Security+ Practice Test of the Day 260424

10 questions • Single best answer

Question 1

A security consultant reviewing a regional bank branch finds that the server room is secured with a biometric fingerprint reader at the entrance, motion-activated lighting, and a mantrap requiring badge authorization before entry. None of the controls involve software configuration or policy documents. Which category of security control do these measures BEST represent?

A. Technical B. Managerial C. Operational D. Physical

Question 2

An organization posts prominent security camera signs throughout its parking garage and lobby, displays a warning banner on all employee workstations stating that system activity is monitored and logged, and publishes a policy warning that unauthorized access will result in criminal prosecution. The security team acknowledges these measures do not technically prevent unauthorized access on their own. Which control type do these measures BEST represent?

A. Preventive B. Detective C. Deterrent D. Compensating

Question 3

After a series of unauthorized after-hours access attempts, a logistics company deploys a SIEM that aggregates logs from badge readers, workstations, and network devices, generating real-time alerts when access events occur outside business hours. The security team reviews alerts and investigates anomalies, but the system does not block access attempts on its own. Which type of security control does this BEST represent?

A. Corrective B. Preventive C. Directive D. Detective

Question 4

Following a ransomware attack that encrypted files on multiple workstations, an incident response team isolates the affected endpoints, restores data from verified offsite backups, reimages the compromised machines, and deploys a patch to close the vulnerability the attacker exploited. These actions are taken after the incident is confirmed. Which type of security control do these post-incident actions represent?

A. Preventive B. Compensating C. Corrective D. Detective

Question 5

A healthcare organization runs legacy medical imaging software that cannot support MFA because the vendor does not offer it and an upgrade is not feasible within the current budget cycle. To reduce risk, the security team places the application on an isolated VLAN with strict firewall rules, limits access to two authorized technicians, and requires a manual paper-based access log for every session. Which type of security control does this BEST represent?

A. Corrective B. Directive C. Compensating D. Preventive

Question 6

A corporate security team publishes a mandatory acceptable use policy requiring all employees to complete annual security awareness training, prohibiting personal email access on company-owned devices, and establishing that violations will result in disciplinary action up to termination. These controls rely on personnel compliance rather than technical enforcement. Which control type do these measures BEST represent?

A. Deterrent B. Directive C. Preventive D. Managerial

Question 7

A risk officer at an insurance company leads quarterly risk assessments, maintains a risk register documenting identified vulnerabilities and their potential business impact, reviews security metrics with the board of directors, and oversees third-party vendor security reviews. These activities guide the organization's security posture without directly implementing technical safeguards. Which control category do these activities BEST represent?

A. Technical B. Operational C. Managerial D. Physical

Question 8

A government contractor implements mandatory background checks for all personnel with access to classified systems, conducts regular security awareness training sessions, maintains a formal visitor management process requiring escorts for all non-badged guests, and performs periodic security drills to prepare staff for emergency procedures. These controls are carried out by people and processes rather than automated systems. Which control category do these measures BEST represent?

A. Technical B. Managerial C. Physical D. Operational

Question 9

An enterprise IT team deploys a next-generation firewall configured to block known malicious IP ranges, enforces multi-factor authentication on all VPN and cloud application access, and implements application whitelisting on all endpoints to prevent unauthorized software from executing. The goal of all three measures is to stop security incidents before they occur. Which control type do these measures BEST represent?

A. Detective B. Corrective C. Preventive D. Deterrent

Question 10

A penetration tester assessing a university campus identifies three security measures in place: (1) security cameras throughout the hallways that record footage but generate no real-time alerts, (2) a security guard at the main entrance who physically verifies and scans badges before permitting entry, and (3) an IDS that monitors network traffic and sends alerts to the SOC when anomalous patterns are detected. Which answer BEST categorizes these three controls in order by control type?