CompTIA Security+ SY0-701 CompTIA Study Notes

CompTIA Security+ Exam 2025 Questions and Answers

Question 201

An administrator wants to perform a risk assessment without using proprietary company information. Which of the following methods should the administrator use to gather information?

Options:

Network scanning

Penetration testing

Open-source intelligence

Configuration auditing

Question 202

Which of the following is a qualitative approach to risk analysis?

Options:

Including the MTTR and MTBF as part of the risk assessment

Tracking and documenting network risks using a risk register

Assigning a level of high, medium, or low to the risk rating

Using ALE and ARO to help determine whether a risk should be mitigated

Question 203

A systems administrator needs to ensure the secure communication of sensitive data within the organization's private cloud. Which of the following is the best choice for the administrator to implement?

Options:

IPSec

SHA-1

RSA

TGT

Question 204

An incident response specialist must stop a malicious attack from expanding to other parts of an organization. Which of the following should the incident response specialist perform first?

Options:

Eradication

Recovery

Containment

Simulation

Big Black Friday Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

CompTIA Security+ SY0-701 CompTIA Study Notes

CompTIA Security+ Exam 2025 Questions and Answers

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce