Security+ Final Exam 2025 questions
and Answers 100% Pass
Chief Information Security Officer (CISO) - ✔✔Responsible for assessing, managing,
and implementing security
Security Manager - ✔✔Supervises technicians, administrators, and security staff
Requires and understanding of configuration and operation but not technical mastery
Security Administrator - ✔✔Has both technical knowledge and managerial skills,
Manages daily operations of security technology,
May analyze and design security solutions
Security Technician - ✔✔Entry Level, Provides technical support to configure security
hardware, implement security software, and diagnose and troubleshoot problems
The CompTIA Security+ Certification - ✔✔Identifies knowledge and skills required to
identify risk and participate in risk mitigation
CIA Triangle - ✔✔Confidentiality, Integrity, Availablity
Confidentiality - ✔✔Security actions that ensure that only authorized parties can view
the information
Integrity - ✔✔Security actions that ensure that the information is correct and no
unauthorized person or malicious software has altered the data
COPYRIGHT © 2025 BY SOPHIA BENNETT, ALL RIGHTS RESERVED 1
, Availability - ✔✔Security actions that ensure that data is accessible to authorized users
Defining Information Security - ✔✔protecting the integrity, confidentiality, and
availability of information on the devices that store, manipulate, and transmit the
information through products, people, and procedures.
Information Security threat agent - ✔✔A person or element that has the power to carry
out a threat
Preventing data theft - ✔✔the primary objective of information security
Health Insurance Portability and Accountability (HIPPA) - ✔✔Health care enterprises
must guard protected healthcare information
$50,000 each violation up to $1.5 Million or 10 years in prison
Sarbanes-Oxley (SARBOX) - ✔✔Set specific requirements and internal controls on
electronic financial reporting systems
$5 million or 20 years in prison
The Gramm-Leach-Bliley Act (GLBA) - ✔✔Requires banks and financial institutions to
alert customers of the policies and practices for disclosing customer information
$500,000
Payment Card Industry Data Security Standard (PCI DSS) - ✔✔Set of security standards
all companies that process, store, or transmit credit card info must follow.
$100,000 per month
California's Database Security Breach Notification Act - ✔✔Requires business to inform
California residents with 48 hours if a break of personal info has occurred
COPYRIGHT © 2025 BY SOPHIA BENNETT, ALL RIGHTS RESERVED 2
and Answers 100% Pass
Chief Information Security Officer (CISO) - ✔✔Responsible for assessing, managing,
and implementing security
Security Manager - ✔✔Supervises technicians, administrators, and security staff
Requires and understanding of configuration and operation but not technical mastery
Security Administrator - ✔✔Has both technical knowledge and managerial skills,
Manages daily operations of security technology,
May analyze and design security solutions
Security Technician - ✔✔Entry Level, Provides technical support to configure security
hardware, implement security software, and diagnose and troubleshoot problems
The CompTIA Security+ Certification - ✔✔Identifies knowledge and skills required to
identify risk and participate in risk mitigation
CIA Triangle - ✔✔Confidentiality, Integrity, Availablity
Confidentiality - ✔✔Security actions that ensure that only authorized parties can view
the information
Integrity - ✔✔Security actions that ensure that the information is correct and no
unauthorized person or malicious software has altered the data
COPYRIGHT © 2025 BY SOPHIA BENNETT, ALL RIGHTS RESERVED 1
, Availability - ✔✔Security actions that ensure that data is accessible to authorized users
Defining Information Security - ✔✔protecting the integrity, confidentiality, and
availability of information on the devices that store, manipulate, and transmit the
information through products, people, and procedures.
Information Security threat agent - ✔✔A person or element that has the power to carry
out a threat
Preventing data theft - ✔✔the primary objective of information security
Health Insurance Portability and Accountability (HIPPA) - ✔✔Health care enterprises
must guard protected healthcare information
$50,000 each violation up to $1.5 Million or 10 years in prison
Sarbanes-Oxley (SARBOX) - ✔✔Set specific requirements and internal controls on
electronic financial reporting systems
$5 million or 20 years in prison
The Gramm-Leach-Bliley Act (GLBA) - ✔✔Requires banks and financial institutions to
alert customers of the policies and practices for disclosing customer information
$500,000
Payment Card Industry Data Security Standard (PCI DSS) - ✔✔Set of security standards
all companies that process, store, or transmit credit card info must follow.
$100,000 per month
California's Database Security Breach Notification Act - ✔✔Requires business to inform
California residents with 48 hours if a break of personal info has occurred
COPYRIGHT © 2025 BY SOPHIA BENNETT, ALL RIGHTS RESERVED 2
