CompTIA Security+ questions with complete solutions 2022/2023

USB Token and PIN A Chief Information Security Officer (CISO) wants to implement two-factor authentication within the company. Which of the following would fulfill the CISO's requirements? Screen Lock Which of the following can a security administrator implement on mobile devices that will help prevent unwanted people from viewing the data if the device is left unattended? 00:43 01:13 Protocol analyzer Which of the following would a security administrator implement in order to identify a problem between two systems that are not communicating properly? False positives Which of the following can result in significant administrative overhead from incorrect reporting? Vulnerability scan A security administrator wants to perform routine tests on the network during working hours when certain applications are being accessed by the most people. Which of the following would allow the security administrator to test the lack of security controls for those applications with the least impact to the system? ALE Which of the following risk concepts requires an organization to determine the number of failures per year? RETURN TO EXAM Please be aware that if you do not accept these terms you will not be allowed to take this CompTIA exam and you will forfeit the fee paid. operational, technical, and management Three of the primary security control types that can be implemented are. Identification The helpdesk reports increased calls from clients reporting spikes in malware infections on their systems. Which of the following phases of incident response is MOST appropriate as a FIRST response? SCP Which of the following protocols operates at the HIGHEST level of the OSI model? $5,000 Joe, the system administrator, has been asked to calculate the Annual Loss Expectancy (ALE) for a $5,000 server, which often crashes. In the past year, the server has crashed 10 times, requiring a system reboot to recover with only 10% loss of data or function. Which of the following is the ALE of this server? Honeypot Which of the following should an administrator implement to research current attack methodologies?