CompTIA Security+ Practice Test of the Day 260507

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 3.4 (Explain the importance of resilience and recovery in security architecture) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

CompTIA Security+ Practice Test of the Day 260507

10 questions • Single best answer

Question 1

A disaster recovery architect at a regional hospital must select an alternate processing site for non-critical administrative systems. The RTO is 72 hours and the DR budget is severely constrained. Which alternate site type BEST balances recovery capability against cost?

A. Hot site B. Warm site C. Cold site D. Geographic dispersion

Question 2

A systems administrator is designing high availability for a customer-facing web application. Each server independently handles any user session with no coordination between nodes. A single server failure must not cause an outage. Which high availability approach is MOST appropriate?

A. Server clustering B. Load balancing C. Journaling D. Cold site failover

Question 3

A database administrator at a healthcare organization is evaluating backup strategies for a high-transaction clinical database. The organization requires the ability to restore the database to its exact state at any specific point in time, including recovering from a failure that occurred mid-transaction. Which backup method BEST supports this requirement?

A. Full backup B. Snapshot C. Incremental backup D. Journaling

Question 4

A security consultant finds that a retail company's primary data center is in downtown Chicago and its alternate recovery site is nine miles away in a nearby suburb. Which resilience weakness does this configuration FAIL to address?

A. Backup encryption B. Load balancing C. Geographic dispersion D. Platform diversity

Question 5

A security engineer reviewing a data center's power infrastructure notices that servers repeatedly crash and logs show file system corruption during brief grid fluctuations lasting 10 to 15 seconds. The facility currently has no power conditioning equipment. Which power resilience control BEST resolves this specific problem?

A. Diesel generator B. Uninterruptible power supply (UPS) C. Geographic dispersion D. Hot site failover

Question 6

A healthcare incident response manager wants to test the business continuity plan without disrupting patient care. Stakeholders gather in a conference room and verbally walk through a simulated ransomware scenario, discussing roles and escalation procedures. Which type of continuity test is this?

A. Failover test B. Tabletop exercise C. Parallel processing D. Simulation

Question 7

After consolidating all workloads onto a single cloud provider, a six-hour outage renders every application unavailable with no failover. The CISO wants a strategy that prevents a single provider failure from causing total unavailability in the future. Which approach BEST addresses this risk?

A. Increasing backup frequency to every 15 minutes B. Deploying a warm site in the cloud provider's alternate geographic region C. Adopting a multi-cloud strategy that distributes workloads across multiple providers D. Implementing UPS systems at the organization's on-premises data center

Question 8

A post-exercise review reveals that both employees solely responsible for executing data recovery procedures were unavailable during the simulation — one on leave, one recently resigned. The recovery plan could not be initiated. Which capacity planning dimension does this gap PRIMARILY represent?

A. Technology capacity B. Infrastructure capacity C. People capacity D. Backup frequency

Question 9

A continuity planner redirects live traffic to alternate infrastructure and runs all operations from the backup site for several hours while the primary site remains completely offline. Which continuity test type does this describe?

A. Tabletop exercise B. Simulation C. Parallel processing D. Failover test

Question 10

A resilience review reveals that every server, workstation, and cloud instance runs a single vendor's OS. A zero-day vulnerability affecting all versions is disclosed with no patch available. Which resilience principle, if implemented earlier, would MOST effectively have limited this exposure?