Free Access CompTIA.SY0-601.v2023-01-05.q72 Practice Test (Page 7)

Question 26

A security analyst is receiving several alerts per user and is trying to determine If various logins are malicious. The security analyst would like to create a baseline of normal operations and reduce noise. Which of the following actions should the security analyst perform?

A.Disable email alerting and review the SIEM directly.

B.Utilize behavioral analysis to enable the SIEM's learning mode.

C.Adjust the data flow from authentication sources to the SIEM.

D.Adjust the sensitivity levels of the SIEM correlation engine.

Question 27

As part of a security compliance assessment, an auditor performs automated vulnerability scans. In addition, which of the following should the auditor do to complete the assessment?

A.User behavior analysis

B.Configuration reviews

C.Packet captures

D.Log analysis

Question 28

Which of the following control types is focused primarily on reducing risk before an incident occurs?

A.Detective

B.Deterrent

C.Corrective

D.Preventive

Question 29

A company has a flat network in the cloud. The company needs to implement a solution to segment its production and non-production servers without migrating servers to a new network. Which of the following solutions should the company implement?

A.internet

B.Zero Trust

C.VLAN segmentation

D.Screened Subnet

Question 30

During a recent penetration test, the tester discovers large amounts of data were exfiltrated over the course of 12 months via the internet. The penetration tester stops the test to inform the client of the findings Which of the following should be the client's NEXT step to mitigate the issue''

A.Disconnect the entire infrastructure from the internet

B.Conduct a full vulnerability scan to identify possible vulnerabilities

C.Perform containment on the critical servers and resources

D.Review the firewall and identify the source of the active connection

Other Version: 2181CompTIA.SY0-601.v2025-02-24.q781; 2125CompTIA.SY0-601.v2024-07-31.q690; 1808CompTIA.SY0-601.v2023-02-27.q56; 1537CompTIA.SY0-601.v2023-02-09.q57; 3405CompTIA.SY0-601.v2023-02-06.q78; 3589CompTIA.SY0-601.v2022-09-29.q183; 7307CompTIA.SY0-601.v2022-05-18.q297; 3952CompTIA.SY0-601.v2022-05-11.q168; 4488CompTIA.SY0-601.v2022-05-09.q210; 4335CompTIA.SY0-601.v2022-05-03.q215; 9395CompTIA.SY0-601.v2022-02-05.q371; 104CompTIA.Examboosts.SY0-601.v2021-11-02.by.prudence.224q.pdf; 10215CompTIA.SY0-601.v2021-10-06.q97

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50

Question 26

Question 27

Question 28

Question 29

Question 30

Download PDF File