[2026] CompTIA Cybersecurity Analyst (CySA+) Certification

문제1

A company creates digitally signed packages for its devices. Which of the following best describes the method by which the security packages are delivered to the company's customers?

A. Trusted firmware updates

B. SELinux

C. Antitamper mechanism

D. eFuse

정답: A

설명: (Fast2test 회원만 볼 수 있음)

문제2

During a review of recent network traffic, an analyst realizes the team has seen this same traffic multiple times in the past three weeks, and it resulted in confirmed malware activity The analyst also notes there is no other alert in place for this traffic After resolving the security incident, which of the following would be the BEST action for the analyst to take to increase the chance of detecting this traffic in the future?

A. Note the security incident so other analysts are aware the traffic is malicious

B. Share details of the security incident with the organization's human resources management team

C. Communicate the security incident to the threat team for further review and analysis

D. Report the security incident to a manager for inclusion in the daily report

정답: C

설명: (Fast2test 회원만 볼 수 있음)

문제3

An organization is experiencing security incidents in which a systems administrator is creating unauthorized user accounts A security analyst has created a script to snapshot the system configuration each day. Following iss one of the scripts:

This script has been running successfully every day. Which of the following commands would provide the analyst with additional useful information relevant to the above script?
A)

B)

C)

A. Option C

B. Option D

C. Option A

D. Option B

정답: B

설명: (Fast2test 회원만 볼 수 있음)

문제4

A company's Chief Information Security Officer (CISO) published an Internet usage policy that prohibits employees from accessing unauthorized websites. The IT department whitelisted websites used for business needs. The CISO wants the security analyst to recommend a solution that would improve security and support employee morale. Which of the following security recommendations would allow employees to browse non-business-related websites?

A. Configure a personal business VLAN.

B. Develop a new secured browser.

C. Install kiosks throughout the building.

D. Implement a virtual machine alternative.

정답: D

설명: (Fast2test 회원만 볼 수 있음)

문제5

A security analyst discovers the company's website is vulnerable to cross-site scripting. Which of the following solutions will best remedy the vulnerability?

A. Client-side input encoding

B. Prepared statements

C. Server-side input validation

D. Disabled JavaScript filtering

정답: C

설명: (Fast2test 회원만 볼 수 있음)

문제6

The help desk is having difficulty keeping up with all onboarding and offboarding requests. Managers often submit, requests for new users at the last minute. causing the help desk to scramble to create accounts across many different Interconnected systems. Which of the following solutions would work BEST to assist the help desk with the onboarding and offboarding process while protecting the company's assets?

A. SSO

B. RBAC

C. CASB

D. MFA

정답: B

설명: (Fast2test 회원만 볼 수 있음)

문제7

While monitoring the information security notification mailbox, a security analyst notices several emails were repotted as spam. Which of the following should the analyst do FIRST?

A. Delete the email from the company's email servers.

B. Review the message in a secure environment.

C. Block the sender In the email gateway.

D. Ask the sender to stop sending messages.

정답: B

설명: (Fast2test 회원만 볼 수 있음)

문제8

Which of the following is a vulnerability associated with the Modbus protocol?

A. Unchecked user input

B. Denial of service

C. Weak encryption

D. Lack of authentication

정답: D

설명: (Fast2test 회원만 볼 수 있음)

문제9

A company is building a new fabrication plant and designing its production lines based on the products it manufactures and the networks to support them. The security engineer has the following requirements:
* Each production line must be secured using a single posture.
* Each production line must only communicate with the other lines in a least privilege method.
* Access to each production line from the rest of the network must be strictly controlled.
To best provide the protection that meets these requirements, each product line should be:

A. logically segmented and firewalled to control inbound and outbound connectivity.

B. air gapped but connected to one another by data diodes.

C. logically segmented and then air gapped to specifically limit traffic.

D. air gapped and firewalled to manage connectivity.

정답: A

설명: (Fast2test 회원만 볼 수 있음)

문제10

During the onboarding process for a new vendor, a security analyst obtains a copy of the vendor's latest penetration test summary:

Performed by: Vendor Red Team Last performed: 14 days ago
Which of the following recommendations should the analyst make first?

A. Disclose details regarding the findings.

B. Perform a more recent penetration test.

C. Continue vendor onboarding.

D. Have a neutral third party perform a penetration test.

정답: A

설명: (Fast2test 회원만 볼 수 있음)

문제11

In web application scanning, static analysis refers to scanning:

A. the system for vulnerabilities before installing the application.

B. an application that is installed and active on a system.

C. an application that is installed on a system that is assigned a static IP.

D. the compiled code of the application to detect possible issues.

정답: D

설명: (Fast2test 회원만 볼 수 있음)

문제12

During an investigation, an analyst discovers the following rule in an executive's email client:

The executive is not aware of this rule. Which of the following should the analyst do first to evaluate the potential impact of this security incident?

A. Remove the rule from the email client and change the password.

B. Check the server logs to evaluate which emails were sent to <someaddress@domain,com>.

C. Recommend that the management team implement SPF and DKIM.

D. Use the SIEM to correlate logging events from the email server and the domain server.

정답: B

설명: (Fast2test 회원만 볼 수 있음)

문제13

During the threat modeling process for a new application that a company is launching, a security analyst needs to define methods and items to take into consideralion Wtiich of the following are part of a known threat modeling method?

A. Human impact, adversary's motivation, adversary's resources, adversary's methods

B. Spoofing tampering, repudiation, information disclosure, denial of service elevation of privilege

C. Purpose, objective, scope, (earn management, cost, roles and responsibilities

D. Threat profile, infrastructure and application vulnerabilities, security strategy and plans

정답: B

설명: (Fast2test 회원만 볼 수 있음)

문제14

Which of the following is the best method to ensure secure boot UEFI features are enabled to prevent boot malware?

A. Enable secure boot in the hardware and reload the operating system.

B. Set I-JEFI to legacy mode and enable security features.

C. Convert the legacy partition table to UEFI and repair the operating system.

D. Reconfigure the system's MBR and enable NTFS.

정답: A

설명: (Fast2test 회원만 볼 수 있음)

문제15

Which of the following is the most important reason to involve the human resources department in incident response?

A. To prevent Incident responders from Interacting directly with any users

B. To ensure the incident response process captures evidence needed in case of disciplinary actions

C. To validate that the incident response process meets the organization's best practices

D. To better Inform recruiters during hiring so they can include incident response Interview questions

정답: B

설명: (Fast2test 회원만 볼 수 있음)

CompTIA Cybersecurity Analyst (CySA+) Certification - CS0-002무료 덤프문제 풀어보기

우리와 연락하기

유용한 링크

최신 업데이트