Free Access CompTIA.SY0-601.v2023-01-05.q72 Practice Test (Page 9)

Question 36

A recent audit cited a risk involving numerous low-criticality vulnerabilities created by a web application using a third-party library. The development staff state there are still customers using the application even though it is end of life and it would be a substantial burden to update the application for compatibility with more secure libraries. Which of the following would be the MOST prudent course of action?

A.Outsource the application to a third-party developer group

B.Accept the risk if there is a clear road map for timely decommission

C.Use containerization to segment the application from other applications to eliminate the risk

D.Deny the risk due to the end-of-life status of the application.

Question 37

To reduce and limit software and infrastructure costs, the Chief Information Officer has requested to move email services to the cloud. The cloud provider and the organization must have security controls to protect sensitive dat a. Which of the following cloud services would BEST accommodate the request?

A.Paas

B.SaaS

C.laas

D.Daas

Question 38

A security analyst has identified malv/are spreading through the corporate network and has activated the CSIRT Which of the following should the analyst do NEXT? A

A.Attempt to quarantine all infected hosts to limit further spread

B.Create help desk tickets to get infected systems reimaged

C.Update all endpomt antivirus solutions with the latest updates

D.Review how the malware was introduced to the network

Question 39

The SOC for a large MSSP is meeting to discuss the lessons learned from a recent incident that took much too long to resolve This type of incident has become more common in recent weeks and is consuming large amounts of the analysts' time due to manual tasks being performed Which of the following solutions should the SOC consider to BEST improve its response time?

A.Install a SIEM with community-driven threat intelligence

B.Collect OSINT and catalog the artifacts in a central repository

C.Configure a NIDS appliance using a Switched Port Analyzer

D.Implement a SOAR with customizable playbooks

Question 40

A technician was dispatched to complete repairs on a server in a data center. While locating the server, the technician entered a restricted area without authorization. Which of the following security controls would BEST prevent this in the future?

A.Use appropriate signage to mark all areas.

B.Implement access control vestibules.

C.Enforce escorts to monitor all visitors.

D.Utilize cameras monitored by guards.

Other Version: 2181CompTIA.SY0-601.v2025-02-24.q781; 2125CompTIA.SY0-601.v2024-07-31.q690; 1808CompTIA.SY0-601.v2023-02-27.q56; 1537CompTIA.SY0-601.v2023-02-09.q57; 3405CompTIA.SY0-601.v2023-02-06.q78; 3589CompTIA.SY0-601.v2022-09-29.q183; 7307CompTIA.SY0-601.v2022-05-18.q297; 3952CompTIA.SY0-601.v2022-05-11.q168; 4493CompTIA.SY0-601.v2022-05-09.q210; 4335CompTIA.SY0-601.v2022-05-03.q215; 9400CompTIA.SY0-601.v2022-02-05.q371; 104CompTIA.Examboosts.SY0-601.v2021-11-02.by.prudence.224q.pdf; 10215CompTIA.SY0-601.v2021-10-06.q97

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50

Question 36

Question 37

Question 38

Question 39

Question 40

Download PDF File