SY0-501 Online Practice Questions and Answers

A company wishes to move all of its services and applications to a cloud provider but wants to maintain full control of the deployment, access, and provisions of its services to its users. Which of the following BEST represents the required cloud deployment model?

A. SaaS

B. IaaS

C. MaaS

D. Hybrid

E. Private

Which of the following attackers generally possesses minimal technical knowledge to perform advanced attacks and uses widely available tools as well as publicly available information?

A. Hacktivist

B. White hat hacker

C. Script kiddle

D. Penetration tester

Which of the following is MOST likely the security impact of continuing to operate end-of- life systems?

A. Higher total cost of ownership due to support costs

B. Denial of service due to patch availability

C. Lack of vendor support for decommissioning

D. Support for legacy protocols

An email systems administrator is configuring the mail server to prevent spear phishing attacks through email messages. Which of the following refers to what the administrator is doing?

A. Risk avoidance

B. Risk mitigation

C. Risk transference

D. Risk acceptance

Which of the following is commonly used for federated identity management across multiple organizations?

A. SAML

B. Active Directory

C. Kerberos

D. LDAP

Which of the following terms BEST describes an exploitable vulnerability that exists but has not been publicly disclosed yet?

A. Design weakness

B. Zero-day

C. Logic bomb

D. Trojan

A company has a team of penetration testers. This team has located a file on the company file server that they believe contains cleartext usernames followed by a hash. Which of the following tools should the penetration testers use to learn more about the content of this file?

A. Exploitation framework

B. Vulnerability scanner

C. Netcat

D. Password cracker

An organization discovers that unauthorized applications have been installed on company-provided mobile phones. The organization issues these devices, but some users have managed to bypass the security controls. Which of the following is the MOST likely issue, and how can the organization BEST prevent this from happening?

A. The mobile phones are being infected with malware that covertly installs the applications. Implement full disk encryption and integrity-checking software.

B. Some advanced users are jailbreaking the OS and bypassing the controls. Implement an MDM solution to control access to company resources.

C. The mobile phones have been compromised by an APT and can no longer be trusted. Scan the devices for the unauthorized software, recall any compromised devices, and issue completely new ones.

D. Some advanced users are upgrading the devices' OS and installing the applications. The organization should create an AUP that prohibits this activity.

A company wants to implement an access management solution that allows employees to use the same usernames and passwords for multiple applications without having to keep multiple credentials synchronized. Which of the following solutions would BEST meet these requirements?

A. Multifactor authentication

B. SSO

C. Biometrics

D. PKI

E. Federation

A security administrator is reviewing the following firewall configuration after receiving reports that users are unable to connect to remote websites:

Which of the following is the MOST secure solution the security administrator can implement to fix this issue?

A. Add the following rule to the firewall: 5 PERMIT FROM:ANY TO:ANY PORT:53

B. Replace rule number 10 with the following rule: 10 PERMIT FROM:ANY TO:ANY PORT:22

C. Insert the following rule in the firewall: 25 PERMIT FROM:ANY TO:ANY PORTS:ANY

D. Remove the following rule from the firewall: 30 DENY FROM:ANY TO:ANY PORT:ANY