- (Exam Topic 2)
A security team suspects that the cause of recent power consumption overloads is the unauthorized use of empty power outlets in the network rack. Which of the following options will mitigate this issue without compromising the number of outlets available?

1. A. Adding a new UPS dedicated to the rack
2. B. Installing a managed PDU
3. C. Using only a dual power supplies unit
4. D. Increasing power generator capacity

Correct Answer: B
Installing a managed PDU is the most appropriate option to mitigate the issue without compromising the number of outlets available. A managed Power Distribution Unit (PDU) helps monitor, manage, and control power consumption at the rack level. By installing a managed PDU, the security team will have greater visibility into power usage in the network rack, and they can identify and eliminate unauthorized devices that consume excessive power from empty outlets.
https://www.comptia.org/training/books/security-sy0-601-study-guide

- (Exam Topic 2)
A company owns a public-facing e-commerce website. The company outsources credit card transactions to a payment company. Which of the following BEST describes the role of the payment company?

1. A. Data controller
2. B. Data custodian
3. C. Data owners
4. D. Data processor

Correct Answer: D
A data processor is an organization that processes personal data on behalf of a data controller. In this scenario, the company that owns the e-commerce website is the data controller, as it determines the purposes and means of processing personal data (e.g. credit card information). The payment company is a data processor, as it processes personal data on behalf of the e-commerce company (i.e. it processes credit card transactions).
Reference: CompTIA Security+ Study Guide (SY0-601) 7th Edition by Emmett Dulaney, Chuck Easttom

- (Exam Topic 1)
A security incident has been resolved Which of the following BEST describes the importance of the final phase of the incident response plan?

1. A. It examines and documents how well the team responded discovers what caused the incident, and determines how the incident can be avoided in the future
2. B. It returns the affected systems back into production once systems have been fully patched, data restored and vulnerabilities addressed
3. C. It identifies the incident and the scope of the breach how it affects the production environment, and the ingress point
4. D. It contains the affected systems and disconnects them from the network, preventing further spread of the attack or breach

Correct Answer: A
The final phase of an incident response plan is the post-incident activity, which involves examining and documenting how well the team responded, discovering what caused the incident, and determining how the incident can be avoided in the future. References: CompTIA Security+ Certification Exam Objectives - 2.5 Given a scenario, analyze potential indicators to determine the type of attack. Study Guide: Chapter 5, page 225.

- (Exam Topic 2)
Which of Ihe following control types is patch management classified under?

1. A. Deterrent
2. B. Physical
3. C. Corrective
4. D. Detective

Correct Answer: C
Patch management is classified as a corrective control because it is used to correct vulnerabilities or weaknesses in systems and applications after they have been identified. It is a reactive approach that aims to fix problems that have already occurred rather than prevent them from happening in the first place.
Reference: CompTIA Security+ SY0-601 Official Textbook, page 109.

- (Exam Topic 1)
A major clothing company recently lost a large amount of proprietary information. The security officer must find a solution to ensure this never happens again.
Which of the following is the BEST technical implementation to prevent this from happening again?

1. A. Configure DLP solutions
2. B. Disable peer-to-peer sharing
3. C. Enable role-based
4. D. Mandate job rotation
5. E. Implement content filters

Correct Answer: A
Data loss prevention (DLP) solutions can prevent the accidental or intentional loss of sensitive data. DLP tools can identify and protect sensitive data by classifying and categorizing it, encrypting it, or blocking it from being transferred outside the organization's network.