Data Security

Protecting data from unauthorized access.

Focuses on data classification, data handling and storage practices, encryption, and techniques to ensure the privacy and integrity of sensitive data.

5 minutes 5 Questions

Concepts covered: Data Obfuscation, Data Backup and Recovery, Encryption, Information Classification, Role-Based Access Control, Data Masking, Data Security Analytics, Data Segregation, Data Privacy, Secure Data Transmissions, Data Loss Prevention (DLP), Data Integrity, Data Retention and Disposal

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

CompTIA Security+ - Data Security Example Questions

Test your knowledge of Amazon Simple Storage Service (S3)

Question 1

A manufacturing company is disposing of an old server that contains sensitive data about customers. The company wants to ensure the data is secure before disposing of the server. What is the best method to ensure the data's safety?

Formatting Taking the server offline Deleting data Degaussing

Correct Answer: Degaussing

Degaussing is the best method for securely disposing of the data on a magnetic storage device, such as a server's hard drives. It uses a strong magnetic field to erase all data stored on the device. The other answers do not provide a sufficient level of data security.

Question 2

Your company has received a request from an employee to delete all personal data that the company holds about them under data protection regulations. How should the company process this request?

Email a copy of the data to the employee Ignore the request Perform a targeted, secure data erasure according to company policy Delete the files containing the data without any verification

Correct Answer: Perform a targeted, secure data erasure according to company policy

Performing a targeted, secure data erasure in accordance with company policy ensures compliance with data protection regulations and the employee's right to request data deletion. The other answers are either non-compliant with regulations, risk exposure of the data, or do not solve the issue.

Question 3

For code obfuscation in software development, what method can a developer use to effectively protect the intellectual property by making it harder for an attacker to reverse engineer it?

Data Masking Control Flow Obfuscation Tokenization Encryption

Correct Answer: Control Flow Obfuscation

Control Flow Obfuscation modifies a program’s control flow, making it harder to analyze the code without affecting performance. Tokenization, data masking, and other options don't address code obfuscation.

Go Premium

CompTIA Security+ Preparation Package (2024)

1087 Superior-grade CompTIA Security+ practice questions.
Accelerated Mastery: Deep dive into critical topics to fast-track your mastery.
Unlock Effortless CompTIA Security+ preparation: 5 full exams.
100% Satisfaction Guaranteed: Full refund with no questions if unsatisfied.
Bonus: If you upgrade now you get upgraded access to all courses
Risk-Free Decision: Start with a 7-day free trial - get premium features at no cost!

Start Your Free 7-Day Trial