Valid SY0-601 Dumps shared by ExamDiscuss.com for Helping Passing SY0-601 Exam! ExamDiscuss.com now offer the newest SY0-601 exam dumps, the ExamDiscuss.com SY0-601 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com SY0-601 dumps with Test Engine here:
Access SY0-601 Dumps Premium Version
(1061 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 97/180
A company recently enhanced mobile device configuration by implementing a set of security controls: biometrics, context-aware authentication, and full device encryption. Even with these settings in place, an unattended phone was used by a malicious actor to access corporate data.
Which of the following additional controls should be put in place first?
Which of the following additional controls should be put in place first?
Correct Answer: C
According to NIST Special Publication 1800-4B1, some of the security controls that can be used to protect mobile devices include:
Root and jailbreak detection: ensures that the security architecture for a mobile device has not been compromised.
Encryption: protects the data stored on the device and in transit from unauthorized access.
Authentication: verifies the identity of the user and the device before granting access to enterprise resources.
Remote wipe: allows the organization to erase the data on the device in case of loss or theft.
Screen lock timer: sets a time limit for the device to lock itself after a period of inactivity.
Root and jailbreak detection: ensures that the security architecture for a mobile device has not been compromised.
Encryption: protects the data stored on the device and in transit from unauthorized access.
Authentication: verifies the identity of the user and the device before granting access to enterprise resources.
Remote wipe: allows the organization to erase the data on the device in case of loss or theft.
Screen lock timer: sets a time limit for the device to lock itself after a period of inactivity.
- Question List (180q)
- Question 1: A company acquired several other small companies The company...
- Question 2: A large enterprise has moved all its data to the cloud behin...
- Question 3: A company owns a public-facing e-commerce website. The compa...
- Question 4: A Chief Information Security Officer (CISO) is evaluating (h...
- Question 5: A security architect is designing the new outbound internet ...
- Question 6: The following are the logs of a successful attack. (Exhibit)...
- Question 7: A company has discovered unauthorized devices are using its ...
- Question 8: A network administrator needs to determine Ihe sequence of a...
- Question 9: A data owner has been tasked with assigning proper data clas...
- Question 10: A security administrator is seeking a solution to prevent un...
- Question 11: A small, local company experienced a ransomware attack. The ...
- Question 12: A company is focused on reducing risks from removable media ...
- Question 13: A police department is using the cloud to share information ...
- Question 14: A security administrator needs to provide secure access to i...
- Question 15: The Chief Information Security Officer directed a risk reduc...
- Question 16: A company completed a vulnerability scan. The scan found mal...
- Question 17: A company's public-facing website, https://www.organization....
- Question 18: An application owner reports suspicious activity on an inter...
- Question 19: A junior security analyst is reviewing web server logs and i...
- Question 20: A security analyst is investigating multiple hosts that are ...
- Question 21: An employee received an email with an unusual file attachmen...
- Question 22: A security analyst is reviewing packet capture data from a c...
- Question 23: The technology department at a large global company is expan...
- Question 24: Which of the following would satisfy three-factor authentica...
- Question 25: A security analyst notices several attacks are being blocked...
- Question 26: Which of the following describes a maintenance metric that m...
- Question 27: After installing a patch On a security appliance. an organiz...
- Question 28: As part of the lessons-learned phase, the SOC is tasked with...
- Question 29: A security analyst reviews a company's authentication logs a...
- Question 30: A company installed several crosscut shredders as part of in...
- Question 31: A security administrator Installed a new web server. The adm...
- Question 32: A security operations technician is searching the log named ...
- Question 33: During a Chief Information Security Officer (CISO) conventio...
- Question 34: A security manager needs to assess the security posture of o...
- Question 35: A cybersecurity analyst needs to adopt controls to properly ...
- Question 36: A company uses a drone for precise perimeter and boundary mo...
- Question 37: A customer has reported that an organization's website displ...
- Question 38: An IT manager is estimating the mobile device budget for the...
- Question 39: A user attempts to load a web-based application, but the exp...
- Question 40: A company recently experienced a major breach. An investigat...
- Question 41: A junior human resources administrator was gathering data ab...
- Question 42: Which of the following is required in order for an IDS and a...
- Question 43: A desktop computer was recently stolen from a desk located i...
- Question 44: An organization would like to remediate the risk associated ...
- Question 45: A company is concerned about individuals driving a car into ...
- Question 46: While performing a threat-hunting exercise, a security analy...
- Question 47: An email security vendor recently added a retroactive alert ...
- Question 48: An information security manager for an organization is compl...
- Question 49: Which of the technologies is used to actively monitor for sp...
- Question 50: A digital forensics team at a large company is investigating...
- Question 51: An analyst is working on an email security incident in which...
- Question 52: A company reduced the area utilized in its datacenter by cre...
- Question 53: A major clothing company recently lost a large amount of pro...
- Question 54: An attacker is targeting a company. The attacker notices tha...
- Question 55: During an investigation, the incident response team discover...
- Question 56: Given the following snippet of Python code: (Exhibit)...
- Question 57: A company is required to continue using legacy software to s...
- Question 58: A security analyst received the following requirements for t...
- Question 59: A security researcher has alerted an organization that its s...
- Question 60: A security team discovered a large number of company-issued ...
- Question 61: When planning to build a virtual environment, an administrat...
- Question 62: An organization wants to secure a LAN/WLAN so users can auth...
- Question 63: A company recently added a DR site and is redesigning the ne...
- Question 64: Certain users are reporting their accounts are being used to...
- Question 65: A network analyst is investigating compromised corporate inf...
- Question 66: A company that provides an online streaming service made its...
- Question 67: A dynamic application vulnerability scan identified code inj...
- Question 68: A company recently implemented a patch management policy; ho...
- Question 69: A security administrator needs to block a TCP connection usi...
- Question 70: A global company is experiencing unauthorized logging due to...
- Question 71: A company is required to continue using legacy software to s...
- Question 72: An organization has been experiencing outages during holiday...
- Question 73: Which of the following allow access to remote computing reso...
- Question 74: An organization discovered a disgruntled employee exfiltrate...
- Question 75: Which of the following models offers third-party-hosted, on-...
- Question 76: A Security engineer needs to implement an MDM solution that ...
- Question 77: If a current private key is compromised, which of the follow...
- Question 78: A large bank with two geographically dispersed data centers ...
- Question 79: A security analyst has received several reports of an issue ...
- Question 80: A security engineer is reviewing the logs from a SAML applic...
- Question 81: The compliance team requires an annual recertification of pr...
- Question 82: An organization wants to enable built-in FDE on all laptops ...
- Question 83: Security engineers are working on digital certificate manage...
- Question 84: Which of the following isa risk that is specifically associa...
- Question 85: Which of the following best describes when an organization U...
- Question 86: Which of the following authentication methods sends out a un...
- Question 87: A security administrator is managing administrative access t...
- Question 88: A security administrator suspects there may be unnecessary s...
- Question 89: An employee's company account was used in a data breach Inte...
- Question 90: The help desk has received calls from users in multiple loca...
- Question 91: A security administrator performs weekly vulnerability scans...
- Question 92: An account was disabled atter several failed and successful ...
- Question 93: A security administrator installed a new web server. The adm...
- Question 94: An organization's Chief Information Security Officer is crea...
- Question 95: A business is looking for a cloud service provider that offe...
- Question 96: A Chief Information Security Officer (CISO) wants to impleme...
- Question 97: A company recently enhanced mobile device configuration by i...
- Question 98: A security investigation revealed mat malicious software was...
- Question 99: A company would like to provide flexibility for employees on...
- Question 100: Developers are writing code and merging it into shared repos...
- Question 101: A security researcher has alerted an organization that its s...
- Question 102: A security analyst reports a company policy violation in a c...
- Question 103: A company has numerous employees who store PHI data locally ...
- Question 104: An employee, receives an email stating he won the lottery. T...
- Question 105: Which of the following security design features can an devel...
- Question 106: Which of the following Is the BEST reason to maintain a func...
- Question 107: Which of the following conditions impacts data sovereignty?...
- Question 108: The findings in a consultant's report indicate the most crit...
- Question 109: A systems administrator is considering different backup solu...
- Question 110: Which of the following incident response steps occurs before...
- Question 111: Which of the following is a solution that can be used to sto...
- Question 112: A bad actor tries to persuade someone to provide financial i...
- Question 113: Per company security policy, IT staff members are required t...
- Question 114: Which of the following describes where an attacker can purch...
- Question 115: A data cento has experienced an increase in under-voltage ev...
- Question 116: A security administrator is working on a solution to protect...
- Question 117: During an incident a company CIRT determine it is necessary ...
- Question 118: An employee's company email is configured with conditional a...
- Question 119: Which of the following provides a catalog of security and pr...
- Question 120: After a phishing scam fora user's credentials, the red team ...
- Question 121: Which of the following best describes the situation where a ...
- Question 122: A security analyst is assisting a team of developers with be...
- Question 123: A company was compromised, and a security analyst discovered...
- Question 124: An engineer is using scripting to deploy a network in a clou...
- Question 125: Which of the following measures the average time that equipm...
- Question 126: Which of the following BEST describes data streams that are ...
- Question 127: Which Of the following security controls can be used to prev...
- Question 128: A security administrator has discovered that workstations on...
- Question 129: Users report access to an application from an internal works...
- Question 130: A retail store has a business requirement to deploy a kiosk ...
- Question 131: The SIEM at an organization has detected suspicious traffic ...
- Question 132: A global pandemic is forcing a private organization to close...
- Question 133: A security architect is implementing a new email architectur...
- Question 134: A company needs to enhance Its ability to maintain a scalabl...
- Question 135: A security analyst is investigating network issues between a...
- Question 136: A company is moving its retail website to a public cloud pro...
- Question 137: The Chief Technology Officer of a local college would like v...
- Question 138: Which of the following controls would provide the BEST prote...
- Question 139: A corporate security team needs to secure the wireless perim...
- Question 140: Which of the following should customers who are involved wit...
- Question 141: A company wants to modify its current backup strategy to mod...
- Question 142: A company is moving to new location. The systems administrat...
- Question 143: A security engineer learns that a non-critical application w...
- Question 144: A systems administrator needs to install a new wireless netw...
- Question 145: A security administrator Is evaluating remote access solutio...
- Question 146: A security administrator is setting up a SIEM to help monito...
- Question 147: A security engineer updated an application on company workst...
- Question 148: As part of a company's ongoing SOC maturation process, the c...
- Question 149: An enterprise has hired an outside security firm to facilita...
- Question 150: Which of the following uses six initial steps that provide b...
- Question 151: A manager for the development team is concerned about report...
- Question 152: An organization recently released a software assurance polic...
- Question 153: Which of the following can be used to detect a hacker who is...
- Question 154: A security administrator is integrating several segments ont...
- Question 155: A user reports trouble using a corporate laptop. The laptop ...
- Question 156: A security assessment found that several embedded systems ar...
- Question 157: A security administrator is using UDP port 514 to send a sys...
- Question 158: Which of the following can be used by an authentication appl...
- Question 159: A company recently upgraded its authentication infrastructur...
- Question 160: A new vulnerability in the SMB protocol on the Windows syste...
- Question 161: During a recent cybersecurity audit, the auditors pointed ou...
- Question 162: A Chief Information Officer receives an email stating a data...
- Question 163: The Chief information Security Officer has directed the secu...
- Question 164: A Chief information Officer is concerned about employees usi...
- Question 165: The Chief Executive Officer announced a new partnership with...
- Question 166: An analyst is working on an investigation with multiple aler...
- Question 167: Which of the following describes business units that purchas...
- Question 168: Which of the following authentication methods is considered ...
- Question 169: A Chief Information Officer is concerned about employees usi...
- Question 170: The management team has requested that the security team imp...
- Question 171: A software developer used open-source libraries to streamlin...
- Question 172: A company policy requires third-party suppliers to self-repo...
- Question 173: A security architect is working on an email solution that wi...
- Question 174: A systems engineer is building a new system for production. ...
- Question 175: A security team suspects that the cause of recent power cons...
- Question 176: An organization recently acquired an ISO 27001 certification...
- Question 177: During a security assessment, a security finds a file with o...
- Question 178: Which of the following should a technician consider when sel...
- Question 179: Which of the following environments utilizes dummy data and ...
- Question 180: Which ol the following is required in order (or an IDS and a...
