CompTIA Sec+ SY0-701: Domain 3, Quiz 2

Which of the following is considered non-human-readable data?

a. Printed financial reports
b. Bar graph depicting quarterly profits
c. Encrypted email message
d. Organizational policy in PDF format

An organization wants to ensure that its data cannot be accessed outside the United States due to regulatory requirements. Which method would be most appropriate?

a. Geographic restrictions
b. Hashing
c. Tokenization
d. Encryption

In the context of data classifications, which type of data would likely include personal emails?

a. Restricted
b. Private
c. Public
d. Critical

Which term describes data actively being processed or used by applications?

a. Data segmentation
b. Data in use
c. Data at rest
d. Data in transit

An organization is considering a backup solution where the backup data is immediately usable and can take over instantly in case of a primary system failure. Which site consideration is this?

a. Hot
b. Geographic dispersion
c. Cold
d. Warm

A company is considering a backup strategy that involves creating point-in-time representations of data that can be used for faster recovery. What are they considering?

a. Snapshots
b. Journaling
c. Replication
d. Frequency

Which of the following is crucial for ensuring an organization has the necessary resources to handle future growth and demands?

a. Backups
b. Power
c. Capacity planning
d. High availability

A company is moving its infrastructure to the cloud but wants to use AWS, Google Cloud, and Azure services for different operations. What approach is the company using?

a. Platform diversity
b. Multi-cloud systems
c. Load balancing
d. Geographic dispersion

What data classification would be most appropriate for a company’s press releases that get shared openly?

a. Confidential
b. Public
c. Sensitive
d. Restricted

For a company wanting to ensure its application remains accessible even when several servers fail simultaneously, what concept should it focus on?

a. Tabletop exercises
b. Capacity planning
c. Continuity of operations
d. High availability

Which strategy involves segmenting a network into smaller parts to improve performance and security?

a. Obfuscation
b. Tokenization
c. Segmentation
d. Encryption

A company runs a sit-down test to determine how its staff responds to a hypothetical security breach by running a drill of the concept. What type of testing is the company employing?

a. Tabletop exercises
b. Failover
c. Parallel processing
d. Penetration Test

In which data state is information most vulnerable to unauthorized interception while being transferred between systems?

a. Data in transit
b. Data at rest
c. Data in use
d. Data sovereignty

A company wants to hide the true nature of its data, making it hard for unauthorized individuals to understand, without changing the original data or using any keys. Which method would be most appropriate?

a. Hashing
b. Encryption
c. Tokenization
d. Obfuscation

What is the primary goal of using Uninterruptible Power Supply (UPS) systems in data centers?

a. Load balancing
b. Providing short-term power during outages
c. Monitoring equipment health
d. Cooling the equipment