CompTIA Certmaster CE Security+ Domain 1.0 General Security
Concepts Assessment Question with 100% Correct Answers
1. In a cybersecurity operation where downtime is critical to its mission, a cybersecurity
analyst incorporates allowlists and denylists restrictions. The objective is to guarantee
high availability (HA) and safeguard against potential security threats. How would a
cybersecurity analyst utilize these lists in this scenario? (Select the two best options.)
Answer: A. Allowlists can specify approved soft- ware, hardware, and change types that are
essential for the operation's functioning.
D. Denylists can block unauthorized software, hardware, and change types that pose high risk to
the operation's availability and security.
2. How can a cybersecurity analyst effectively utilize version control to main- tain a
historical record of changes and ensure security in the organization's IT systems and
applications?
Answer: C. Use version control to track changes in network diagrams and configuration files.
3. A malicious actor initiates an attack on a software organization, believing it to have
successfully acquired sensitive data. Unbeknownst to the attacker, the organization has
deceived the attacker by intentionally providing fake sen- sitive information and has now
1/
8
, captured the attacker's tactics and tools.What deception technology did the organization
deploy to capture the attacker's techniques and tools?
Answer: D. Honeyfile
4. A cyber technician reduces a computer's attack surface by installing a
cryptoprocessor that a plug-in peripheral component interconnect express (PCIe)
adaptor card can remove. What type of cryptoprocessor can support this requirement?
Answer: B. Hardware Security Module (HSM)
5. A corporation's IT department is integrating a new framework that permits, ascertains,
and applies various resources in accordance with established company policies. Which
principle should the department incorporate?
Answer: A. Policy-driven access control
6. The organization is implementing a significant software upgrade that ne- cessitates
application restarts. How can the cybersecurity analyst ensure a smooth transition
without causing extended downtime?
Answer: B. Schedule the upgrade during nonworking hours to reduce the impact on
users.
7. A security analyst wants to ensure that the privileges granted to an individ- ual align
with the role within the organization. What is the primary tool that the analyst should
2/
8
Concepts Assessment Question with 100% Correct Answers
1. In a cybersecurity operation where downtime is critical to its mission, a cybersecurity
analyst incorporates allowlists and denylists restrictions. The objective is to guarantee
high availability (HA) and safeguard against potential security threats. How would a
cybersecurity analyst utilize these lists in this scenario? (Select the two best options.)
Answer: A. Allowlists can specify approved soft- ware, hardware, and change types that are
essential for the operation's functioning.
D. Denylists can block unauthorized software, hardware, and change types that pose high risk to
the operation's availability and security.
2. How can a cybersecurity analyst effectively utilize version control to main- tain a
historical record of changes and ensure security in the organization's IT systems and
applications?
Answer: C. Use version control to track changes in network diagrams and configuration files.
3. A malicious actor initiates an attack on a software organization, believing it to have
successfully acquired sensitive data. Unbeknownst to the attacker, the organization has
deceived the attacker by intentionally providing fake sen- sitive information and has now
1/
8
, captured the attacker's tactics and tools.What deception technology did the organization
deploy to capture the attacker's techniques and tools?
Answer: D. Honeyfile
4. A cyber technician reduces a computer's attack surface by installing a
cryptoprocessor that a plug-in peripheral component interconnect express (PCIe)
adaptor card can remove. What type of cryptoprocessor can support this requirement?
Answer: B. Hardware Security Module (HSM)
5. A corporation's IT department is integrating a new framework that permits, ascertains,
and applies various resources in accordance with established company policies. Which
principle should the department incorporate?
Answer: A. Policy-driven access control
6. The organization is implementing a significant software upgrade that ne- cessitates
application restarts. How can the cybersecurity analyst ensure a smooth transition
without causing extended downtime?
Answer: B. Schedule the upgrade during nonworking hours to reduce the impact on
users.
7. A security analyst wants to ensure that the privileges granted to an individ- ual align
with the role within the organization. What is the primary tool that the analyst should
2/
8
