Security Architecture Questions
Practice questions for Security Architecture topic in CompTIA SecurityX. 27 questions covering this domain.
Which zero trust concept defines the relationship between the entity requesting access and the resource being accessed?
Which CASB deployment mode operates by intercepting cloud traffic inline between users and cloud services?
A financial services organization is adopting a hybrid cloud model. The security architect must ensure that data classified as Restricted never leaves...
During an architecture review of a serverless application, a security architect discovers that multiple Lambda functions share a single overprivileged...
Which technology integrates SD-WAN with cloud-native security services to provide a converged network and security architecture for distributed organi...
A cloud security architect is designing controls to detect employees uploading sensitive corporate data to unauthorized personal cloud storage service...
An organization wants to prevent sensitive data from leaking through its containerized microservices. The security architect decides to enforce networ...
What is the primary security benefit of microsegmentation in a data center network?
A security architect needs to prevent cloud data remanence after a virtual machine is decommissioned in a shared cloud environment. Which control BEST...
A security architect is designing a multi-cloud environment and needs to continuously validate that cloud workloads meet security baselines without re...
An enterprise wants to extend its zero trust architecture to remote workers. Users must be continuously verified before accessing internal application...
An organization is designing a secure CI/CD pipeline for container deployments. The security team requires that container images are verified as unmod...
An organization is migrating workloads to a public cloud. The security team wants to ensure that infrastructure changes are reviewed for security misc...
A security architect is reviewing a legacy network design where all users and servers share a flat network. Following a ransomware incident, the archi...
What does attestation in the context of security boundary management refer to?
Which cloud service model places the MOST security responsibility on the customer for patching and securing the operating system?
Which network architecture approach replaces traditional physical network devices with software-controlled virtual networks, enabling centralized netw...
An organization wants to implement a solution that enforces consistent security policies for all users accessing cloud applications, regardless of whe...
An organization is deploying a multi-tenant cloud application. Each tenant's data must be logically isolated such that a vulnerability in one tenant's...
A large enterprise is migrating from a traditional VPN-based remote access model to a zero trust architecture. During the transition, legacy applicati...
Sign in to see all 27 questions
Create a free account to browse all questions — completely free during our launch phase.