NO.1 Which of the following should Joe, a security manager, implement to reduce the risk of
employees working in collusion to embezzle funds from his company?
A. Privacy Policy
B. Least Privilege
C. Acceptable Use
D. Mandatory Vacations
Answer: D

CompTIA questions   SY0-401 Exam Tests Exam Prep   SY0-401 Exam Tests Exam Cost
Explanation:
When one person fills in for another, such as for mandatory vacations, it provides an opportunity to
see what the person is doing and potentially uncover any fraud.

NO.2 Ann works at a small company and she is concerned that there is no oversight in the finance
department; specifically, that Joe writes, signs and distributes paycheques, as well as other
expenditures. Which of the following controls can she implement to address this concern?
A. Mandatory vacations
B. Time of day restrictions
C. Least privilege
D. Separation of duties
Answer: D

CompTIA Latest Dumps   SY0-401 Exam Tests Exam Tests   SY0-401 Exam Tests Exam Questions
Explanation:
Separation of duties divides administrator or privileged tasks into separate groupings, which in turn,
is individually assigned to unique administrators. This helps in fraud prevention, error reduction, as
well as conflict of interest prevention. For example, those who configure security should not be the
same people who test security. In this case, Joe should not be allowed to write and sign paycheques.

NO.3 A security technician wishes to gather and analyze all Web traffic during a particular time
period.
Which of the following represents the BEST approach to gathering the required data?
A. Configure a VPN concentrator to log all traffic destined for ports 80 and 443.
B. Configure a proxy server to log all traffic destined for ports 80 and 443.
C. Configure a switch to log all traffic destined for ports 80 and 443.
D. Configure a NIDS to log all traffic destined for ports 80 and 443.
Answer: B

CompTIA Real Questions   SY0-401 Exam Tests original questions   SY0-401 Exam Tests Exam Cram
Explanation:
A proxy server is in essence a device that acts on behalf of others and in security terms all internal
user interaction with the Internet should be controlled through a proxy server. This makes a proxy
server the best tool to gather the required data.

NO.4 A datacenter requires that staff be able to identify whether or not items have been removed
from the facility. Which of the following controls will allow the organization to provide automated
notification of item removal?
A. CCTV
B. Environmental monitoring
C. RFID
D. EMI shielding
Answer: C

CompTIA Exam Tests   SY0-401 Exam Tests certification training   SY0-401 Exam Tests Test Answers
Explanation:
RFID is radio frequency identification that works with readers that work with 13.56 MHz smart cards
and 125 kHz proximity cards and can open turnstiles, gates, and any other physical security
safeguards once the signal is read. Fitting out the equipment with RFID will allow you to provide
automated notification of item removal in the event of any of the equipped items is taken off the
premises.

NO.5 Which of the following is a programming interface that allows a remote computer to run
programs on a local machine?
A. RPC
B. RSH
C. SSH
D. SSL
Answer: A

CompTIA Practice Exam   SY0-401 Exam Tests exam dumps
Explanation:
Remote Procedure Call (RPC) is a programming interface that allows a remote computer to run
programs on a local machine.

NO.6 A system administrator has been instructed by the head of security to protect their data at-rest.
Which of the following would provide the strongest protection?
A. Prohibiting removable media
B. Incorporating a full-disk encryption system
C. Biometric controls on data center entry points
D. A host-based intrusion detection system
Answer: B

CompTIA certification   SY0-401 Exam Tests PDF VCE
Explanation:
Full disk encryption can be used to encrypt an entire volume with 128-bit encryption. When the
entire volume is encrypted, the data is not accessible to someone who might boot another operating
system in an attempt to bypass the computer's security. Full disk encryption is sometimes referred to
as hard drive encryption. This would be best to protect data that is at rest.

NO.7 Which of the following firewall rules only denies DNS zone transfers?
A. deny udp any any port 53
B. deny ip any any
C. deny tcp any any port 53
D. deny all dns packets
Answer: C

CompTIA exam simulations   SY0-401 Exam Tests answers real questions
Explanation:
DNS operates over TCP and UDP port 53. TCP port 53 is used for zone transfers.

NO.8 RADIUS provides which of the following?
A. Authentication, Authorization, Availability
B. Authentication, Authorization, Auditing
C. Authentication, Accounting, Auditing
D. Authentication, Authorization, Accounting
Answer: D

CompTIA braindump   SY0-401 Exam Tests test

ITbraindumps's senior team of experts has developed training materials for CompTIA SY0-401 Exam Tests.Through ITbraindumps's training and learning passing CompTIA certification SY0-401 Exam Tests will be very simple. ITbraindumps can 100% guarantee you pass your first time to participate in the CompTIA certification SY0-401 Exam Tests successfully. And you will find that our practice questions will appear in your actual exam. When you choose our help, ITbraindumps can not only give you the accurate and comprehensive examination materials, but also give you a year free update service.

The appropriate selection of training is a guarantee of success. However, the choice is very important, ITbraindumps popularity is well known, there is no reason not to choose it. Of course, Give you the the perfect training materials, if you do not fit this information that is still not effective. So before using ITbraindumps training materials, you can download some free questions and answers as a trial, so that you can do the most authentic exam preparation. This is why thousands of candidates depends ITbraindumps one of the important reason. We provide the best and most affordable, most complete exam training materials to help them pass the exam.

SY0-401 Exam Tests provided by ITbraindumps are tested through practice, and are the most correct and the newest practical SY0-401 Exam Tests dumps. Our ITbraindumps can provide accurate SY0-401 Exam Tests based on extensive research and the experience of real world to make you pass SY0-401 Exam Tests in a short time. If you purchase our SY0-401 Exam Tests, we will offer free update service within one year.

Exam Code: SY0-401 Exam Tests
Exam Name: CompTIA Security+ Certification
One year free update, No help, Full refund!
SY0-401 Exam Tests PDF VCE Total Q&A: 1150 Questions and Answers
Last Update: 12-01,2015

SY0-401 Exam Tests Test Questions Detail: SY0-401 Exam Tests PDF VCE

ITbraindumps offer the latest CAT-221 exam material and high-quality C2040-440 pdf questions & answers. Our 1z1-462 VCE testing engine and 400-101 study guide can help you pass the real exam. High-quality P2140-022 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.

SY0-401 Exam Tests: http://examcollection.it2blog.com/2015/04/16/the-latest-comptia-certification-sy0-401-exam-training-methods/

Article Link: http://www.itbraindumps.com/SY0-401_exam.html