Valid SY0-701 Dumps shared by ExamDiscuss.com for Helping Passing SY0-701 Exam! ExamDiscuss.com now offer the newest SY0-701 exam dumps, the ExamDiscuss.com SY0-701 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com SY0-701 dumps with Test Engine here:
Access SY0-701 Dumps Premium Version
(645 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 78/91
Security controls in a data center are being reviewed to ensure data is properly protected and that human life considerations are included. Which of the following best describes how the controls should be set up?
Correct Answer: C
Safety controls are security controls that are designed to protect human life and physical assets from harm or damage. Examples of safety controls include fire alarms, sprinklers, emergency exits, backup generators, and surge protectors. Safety controls should fail open, which means that they should remain operational or allow access when a failure or error occurs. Failing open can prevent or minimize the impact of a disaster, such as a fire, flood, earthquake, or power outage, on human life and physical assets. For example, if a fire alarm fails, it should still trigger the sprinklers and unlock the emergency exits, rather than remain silent and locked. Failing open can also ensure that essential services, such as healthcare, transportation, or communication, are available during a crisis. Remote access points, logging controls, and logical security controls are other types of security controls, but they should not fail open in a data center. Remote access points are security controls that allow users or systems to access a network or a system from a remote location, such as a VPN, a web portal, or a wireless access point. Remote access points should fail closed, which means that they should deny access when a failure or error occurs. Failing closed can prevent unauthorized or malicious access to the data center's network or systems, such as by hackers, malware, or rogue devices. Logging controls are security controls that record and monitor the activities and events that occur on a network or a system, such as user actions, system errors, security incidents, or performance metrics. Logging controls should also fail closed, which means that they should stop or suspend the activities or events when a failure or error occurs. Failing closed can prevent data loss, corruption, or tampering, as well as ensure compliance with regulations and standards. Logical security controls are security controls that use software or code to protect data and systems from unauthorized or malicious access, modification, or destruction, such as encryption, authentication, authorization, or firewall. Logical security controls should also fail closed, which means that they should block or restrict access when a failure or error occurs. Failing closed can prevent data breaches, cyberattacks, or logical flaws, as well as ensure confidentiality, integrity, and availability of data and systems. Reference: CompTIA Security+ Study Guide: Exam SY0-701, 9th Edition, page 142-143, 372-373, 376-377
- Question List (91q)
- Question 1: A hacker gained access to a system via a phishing attempt th...
- Question 2: After performing an assessment, an analyst wants to provide ...
- Question 3: The CIRT is reviewing an incident that involved a human reso...
- Question 4: Which of the following security concepts is accomplished wit...
- Question 5: Select the appropriate attack and remediation from each drop...
- Question 6: Which of the following automation use cases would best enhan...
- Question 7: A systems administrator is changing the password policy with...
- Question 8: Which of the following is most likely to be deployed to obta...
- Question 9: Which of the following security concepts is the best reason ...
- Question 10: Which of the following is the most common data loss path for...
- Question 11: A security analyst is reviewing the source code of an applic...
- Question 12: After a security awareness training session, a user called t...
- Question 13: A company's legal department drafted sensitive documents in ...
- Question 14: An employee clicked a link in an email from a payment websit...
- Question 15: A company purchased cyber insurance to address items listed ...
- Question 16: Which of the following vulnerabilities is exploited when an ...
- Question 17: A client demands at least 99.99% uptime from a service provi...
- Question 18: Which of the following threat actors is the most likely to u...
- Question 19: A company is concerned about weather events causing damage t...
- Question 20: Which of the following must be considered when designing a h...
- Question 21: An administrator finds that all user workstations and server...
- Question 22: A small business uses kiosks on the sales floor to display p...
- Question 23: The marketing department set up its own project management s...
- Question 24: A security manager created new documentation to use in respo...
- Question 25: A systems administrator is working on a defense-in-depth str...
- Question 26: To improve the security at a data center, a security adminis...
- Question 27: A newly appointed board member with cybersecurity knowledge ...
- Question 28: Which of the following can be used to identify potential att...
- Question 29: Which of the following best describes configuring devices to...
- Question 30: A security analyst is investigating an alert that was produc...
- Question 31: An administrator is reviewing a single server's security log...
- Question 32: Which of the following describes the category of data that i...
- Question 33: After an audit, an administrator discovers all users have ac...
- Question 34: A technician is opening ports on a firewall for a new system...
- Question 35: After a recent ransomware attack on a company's system, an a...
- Question 36: The management team notices that new accounts that are set u...
- Question 37: During a recent breach, employee credentials were compromise...
- Question 38: Which of the following involves an attempt to take advantage...
- Question 39: An organization disabled unneeded services and placed a fire...
- Question 40: A company is expanding its threat surface program and allowi...
- Question 41: A systems administrator receives the following alert from a ...
- Question 42: Which of the following would be used to detect an employee w...
- Question 43: Which of the following would be most useful in determining w...
- Question 44: A systems administrator is configuring a site-to-site VPN be...
- Question 45: A company is decommissioning its physical servers and replac...
- Question 46: A company wants to verify that the software the company is d...
- Question 47: A user is attempting to patch a critical system, but the pat...
- Question 48: A security administrator identifies an application that is s...
- Question 49: Which of the following must be considered when designing a h...
- Question 50: A Chief Information Security Officer (CISO) wants to explici...
- Question 51: A company tested and validated the effectiveness of network ...
- Question 52: A company hired a consultant to perform an offensive securit...
- Question 53: Which of the following is the most likely outcome if a large...
- Question 54: Which of the following is the phase in the incident response...
- Question 55: An organization is building a new backup data center with co...
- Question 56: Which of the following would be the best way to block unknow...
- Question 57: A company decided to reduce the cost of its annual cyber ins...
- Question 58: An organization is required to maintain financial data recor...
- Question 59: Which of the following is required for an organization to pr...
- Question 60: After conducting a vulnerability scan, a systems administrat...
- Question 61: An attacker posing as the Chief Executive Officer calls an e...
- Question 62: A security engineer is implementing FDE for all laptops in a...
- Question 63: Which of the following risk management strategies should an ...
- Question 64: A company's web filter is configured to scan the URL for str...
- Question 65: Which of the following incident response activities ensures ...
- Question 66: A company is required to use certified hardware when buildin...
- Question 67: A manager receives an email that contains a link to receive ...
- Question 68: A security analyst receives alerts about an internal system ...
- Question 69: After reviewing the following vulnerability scanning report:...
- Question 70: An employee receives a text message that appears to have bee...
- Question 71: A security engineer needs to configure an NGFW to minimize t...
- Question 72: A systems administrator works for a local hospital and needs...
- Question 73: An organization wants to ensure the integrity of compiled bi...
- Question 74: A client asked a security company to provide a document outl...
- Question 75: Which of the following is a hardware-specific vulnerability?...
- Question 76: Which of the following is the best way to consistently deter...
- Question 77: Which of the following describes the process of concealing c...
- Question 78: Security controls in a data center are being reviewed to ens...
- Question 79: An administrator assists the legal and compliance team with ...
- Question 80: Which of the following would help ensure a security analyst ...
- Question 81: Which of the following is the most likely to be used to docu...
- Question 82: A company is developing a business continuity strategy and n...
- Question 83: A healthcare organization wants to provide a web application...
- Question 84: A company is adding a clause to its AUP that states employee...
- Question 85: Which of the following would be best suited for constantly c...
- Question 86: Which of the following is used to validate a certificate whe...
- Question 87: The marketing department set up its own project management s...
- Question 88: An organization would like to calculate the time needed to r...
- Question 89: A security analyst is reviewing alerts in the SIEM related t...
- Question 90: An administrator was notified that a user logged in remotely...
- Question 91: An enterprise is trying to limit outbound DNS traffic origin...
