Security Engineering Questions
Practice questions for Security Engineering topic in CompTIA SecurityX. 31 questions covering this domain.
A security engineer needs to automate the collection of vulnerability scan results and create remediation tickets in the ITSM platform whenever a crit...
A security engineer is reviewing a vulnerability scan report and needs to prioritize remediation. Which SCAP component provides a standardized scoring...
An organization is evaluating cryptographic algorithms for protecting sensitive data transmitted between IoT sensors and a cloud backend. The sensors ...
An organization uses a container registry and wants to ensure that only images that pass vulnerability scanning are deployed to production Kubernetes ...
An organization is preparing for the potential impact of quantum computing on its current public key infrastructure. The security engineering team is ...
A SOAR platform is configured to automatically quarantine endpoints when a high-confidence malware detection alert fires. After deployment, the SOC ob...
A security engineer is automating vulnerability remediation across 2,000 cloud instances. The engineer wants to apply patches using a declarative infr...
A security engineer needs to protect a database encryption key (DEK) such that the key cannot be reconstructed by any single administrator or recovere...
Which cryptographic technique allows computation on encrypted data without first decrypting it?
A developer wants to ensure that a software package distributed to customers has not been altered after it was built and signed by the vendor. Which c...
Which SOAR capability allows a security operations team to define automated responses to specific alert types using a predefined series of steps?
An organization needs to protect API tokens stored in a cloud application from being exposed in source code repositories. Which approach is MOST appro...
An organization must ensure that encryption keys used to protect customer data are rotated automatically and that old keys are retired securely. Which...
Which cryptographic property ensures that past session keys cannot be compromised even if the long-term private key is later exposed?
Which SCAP component provides a standardized naming scheme for software flaws and security vulnerabilities?
A security engineer is building an automated vulnerability management pipeline. After scanning, findings are exported in SCAP format for import into a...
A security engineer is designing a PKI for an organization that wants to ensure that even if the root CA private key is compromised in the future, his...
A security engineer discovers that a third-party library used in the organization's web application has a critical CVE with a CVSS base score of 9.8. ...
An organization's vulnerability management program produces thousands of CVEs monthly. The security team needs a standardized method to objectively pr...
A security engineer is implementing encryption for a blockchain-based supply chain audit trail. The requirement is that each transaction record is cry...
Sign in to see all 31 questions
Create a free account to browse all questions — completely free during our launch phase.