Security Architecture Questions
Practice questions for Security Architecture topic in CompTIA Security+. 18 questions covering this domain.
Which cloud service model provides customers with virtualized computing resources — such as virtual machines, storage, and networking — over the inter...
An organization implements a backup strategy where data is backed up daily to a local disk, weekly to a secondary on-site device, and monthly to an of...
An organization is deploying a new application and wants to ensure that all communications between clients and the application server are encrypted in...
A company wants to ensure that even if an attacker penetrates one system, they cannot easily move to other critical systems. Which network security de...
A security architect is designing a solution for a manufacturing plant that uses industrial control systems (ICS). Which security architecture princip...
An organization wants to protect sensitive data at rest on employee laptops in case they are stolen. Which data protection method is MOST appropriate?
A security engineer is evaluating a hybrid cloud architecture. The organization stores sensitive data in its on-premises data center and uses public c...
An organization is designing a disaster recovery strategy. They want the ability to resume operations within minutes of a failure, with all systems an...
A security architect is evaluating the use of Infrastructure as Code (IaC) for cloud deployments. What is the PRIMARY security benefit of IaC compared...
An organization wants to deploy a serverless application in the cloud where code executes only in response to events. Which cloud deployment model doe...
A security engineer implements microsegmentation in a data center, applying security policies at the individual workload level rather than at the netw...
An organization uses a proxy server that intercepts all employee web traffic, decrypts TLS sessions, inspects the content for malware, and re-encrypts...
An organization is deploying a containerized application environment. Which security consideration is MOST important when containers share the same ho...
A security architect designs a network where internet-facing servers (web servers) are placed in a separate network zone between the internet and the ...
Which network device operates at Layer 3 of the OSI model, routes traffic between different networks, and can be used to implement access control list...
An organization's recovery time objective (RTO) is 4 hours and recovery point objective (RPO) is 1 hour for a critical application. Which backup strat...
A company uses a cloud-based application with user data stored in a public cloud. The security team is concerned about data sovereignty — ensuring tha...
An organization wants to ensure that sensitive database records containing personally identifiable information (PII) are stored in a format that preve...
Sign in to see all 18 questions
Create a free account to browse all questions — completely free during our launch phase.