Definitely drop more of these. The way you voiced your thought process on each question gives an idea on how we should go about thinking when it comes to the exam.
There’s another one scheduled for 6pm CST this evening. But yes, a big part to every CompTIA exam I’ve done required an understanding on the format of the question. Once you get that down, it becomes much clearer which of the possible answers to pick!
@@WaseemKhan-pl5mw I'm taking 701 and I was told these questions cover both and I've found that to be true for what I've studied and going through these questions it's nothing I haven't seen in the study materials for 701
Thank you, I passed my SY0-601 exam yesterday after watching your videos. Although the questions in the test were diffrent but your methods helped in the test.
Congrats! Yeah, the questions in these videos are not exact questions. That would go against the NDA that we signed when we passed the Security+ exam. The questions are designed to be similar in format to what you'd expect, the same objectives, and a little more wording to help train test fatigue. I'm glad you passed, what's next?
@@thegamerx2515it’s not hard, just take your time to read and understand what the question is asking. If you are not sure about an answer, go with your first guess.
Did u pass with points by a close shave (barely passing) and What resources did you use to study and how did u prepare for the pbq's? those are my main concern as I assume those carry the most points that could make or break ur points. I hope not only you but anyone could help give me some help to my question thank you
Having a weekly practice questions are/is very, very helpful. Since multiple people are writing test questions in order to maintain their certs, you reading them and dissecting to find the answer is very helpful for folks who are not strong readers. Keep up the good work for Security+
Thanks James. Questions are absolutely fantastic. I could pay for these types of questions, but who competes with FREE. Please keep posting such contents. Thanks again!!!
Appreciate the breakdowns on your answers and taking the time to explain explain. I'm just starting to get into Cyber Sec. I've always been into Tech, computers and networking so I'm familiar with a lot of terms and some knowledge, but for someone who hasn't done any schooling, it's nice to have breakdowns and explanations of each answers
I’m glad I can help. When I first started my cybersecurity journey the best way I learned was by learning why or why not I got a question wrong when doing practice exams. That gave me the opportunity to dig deeper on a concept I didn’t fully understand. Good luck on your journey!
I think that in Question 7 the correct one is B, not C. Answer C protects the CRM application from the attacker reading the data but it does not protect it from unauthorized access. I think Answer B is more accurate.
I just finished that question and immediately came to the comment section. I was thinking exactly the same way as you did. Not sure if C is correct on that question.
No, only because the data stored on the CRM is is now encrypted following option C, so even if an attacker could get it they would not be able to decrypt the stored data. Obviously its preferred that they can't get in but if it were possible for them to get around the MFA (Which it is), they would compromise all there customer information.
so helpful. On my security+ journey and didnt know how to prepare for the exams, so this was super informative and definitely helpful. thank you James 👊
Glad it was helpful! Make sure to also use other material and don't overdo it! Good luck, be sure to come back once you pass! Looking forward to hearing.
Question 19: A CASB incorporates encryption and protects sensitive info through DLP. By incorporating that, wouldn’t that encrypt already exposed data and at the same time protect that same data from future exposure? It would have been helpful if you explained why you didn’t choose answer ’A’ 😊
excellent work bro, thank you for your input! im studying for sec+ and i cannot afford any of the paid practice exams, kudos to you for providing such quality content for free. your thought process is on point and questions are well thought
Great video thank you James. Subbed and liked! My biggest problem is not effectively reading the questions and jumping to the answer my monkey brain thinks is the best. Your breaking down the key words has helped massively thank you!
Thanks for this. I feel like I have a pretty good understanding of all of the concepts, but the way that the questions and answers are worded can be tricky.
Hey man! Thanks for this video. I'm also planning on starting my UA-cam channel this year based on my journey in Cybersecurity. Sharing and inspiring others, is something I'm thriving on doing! and already been building a portfolio on my website, doing some projects and studying for my Sec+
I finally passed this exam after more than 60 days of study, with small interruptions. I am already ccna, ccna security, linux essentials, lpic-1,and CCNP. I must say the study guide has a lot of information to memorise and abbreviations, but unfortunately less hands on labs. Comptia should implement more practical labs, and reduce the theory, which will be forgotten in less than a year. My score was below 800, but for a job interview i doubt i have to know what measures i have to implement to stop intruders entering an airport secure area. It is not an easy exam, take your time, study at least 2 hours per day, do practice exams as much as you can, and you are good to go. One more thing, if you intend to start a career in cybersecurity, start learning linux first.
Really helpful video. Me and my wife are taking the CompTIA 701 in a week and this really helps a lot! Thank you so much! Going to your 2nd and 3rd video now :)
I agree, i guessed MFA too. An encrypted database doesn’t stop someone from brute forcing or keylogging their way into the actual SaaS application. Not like its encrypted in the GUI. Im still studying but this video has opened my eyes to the tricks they play on the exam.
They won't have access to the data if the data is encrypted. They won't be able to use any of the encrypted data. This is 5 months later so you probably already know this and have your cert already but I'm studying at the moment 😂
Gotta say I'm not convinced on Question 18... Definitely very on-the-edge between B and D, but having worked in a SCIF extensively, I still feel like D is just a hair more accurate. After all, if employees don't comply with access control policy, no amount of security measures will stop them from just walking right through the front door. Commandment 1 of the SCIF was don't hold the door, make sure you're the only one passing through and that the door closes behind you. Otherwise, badge/fingerprint MFA is useless. Probably just over-analysis on my part. Awesome write-up though! Super useful. I'm identifying some gaps in my knowledge. Some of these questions really trip you up...
I feel like these questions rely more on theory than on the actual real life scenario. By definition tailgating means gaining access to unauthorized area. If you google how to prevent tailgating the no.1 answer is by enforcing physical security measures (this includes guards/security staff as well). If someone sneaks behind an employee who badges in it would be the guard's job to stop the intrusion. You have to train the security personnel more than the others. D is more accurate for smaller places/ single company office. In a shared building you cannot rely on employees from other companies even if you trained yours.
Agreed - Strict policies pertaining to access to the building doesn't stop anyone from walking in behind you Tailgating/Piggybacking. D is for sure the correct answer here.
@@maxmout51 The thing is, I’m not a dick. I like supporting content creators by watching their ads because that’s how they earn an income from all of their hard work. People who use ad blockers are selfish and are hurting the creators. That being said, I find it hard to support the creator when there’s an ad every two minutes.
Man this is super helpful content, appreciate it! Wherever you take this channel Im sure if you put the same level of thought and care it will be great, keep it up!
Best real practice videos With your analysis as well is perfect for understanding ❤ Keep going I know it consumes time to do like these high quality videos. I appreciate your effort 🙏👌
Part 1-3 are based on objectives that align with both 601 and 701. Part 4 is 701, since 701 has a LOT of similar objectives as the 601. @@WaseemKhan-pl5mw
Great video and explanation to help better understand each question. After watching part 1 I already feel much more comfortable for the exam!!! Please make more CompTIA Sec + videos!
Question Number #19 Seems to be poorly written. Which of the following actions would be "MOST effective" in ("mitigating the immediate risk" AND "preventing similar incidents in the future") B. Encrypt all sensitive data in the cloud will mitigate the immediate risk for the data, but it will not prevent similar incidents with a data storage bucket from being accidentally misconfigured in the future. The root cause of the INC is the misconfiguration, not the possible lack of encryption. A. Implement CASB Cloud Access Security Broker is a cloud security solutions to monitor and enforce security policies for cloud storage. CASBs can provide visibility, control, and compliance for cloud environments, helping to prevent misconfigurations and unauthorized access. A and B are correct for the question asked, "MOST effective" because of the conditional "AND" in ("mitigating the immediate risk" AND "preventing similar incidents in the future"). If the question asked, What is MOST effective" in "mitigating the immediate risk". Then yes the answer would be "B"!
Very good vids man. I am studying to take my SEC+ course and your videos are really helping me gauge where I am with the multiple choice portion of the exam. I am looking forward on checking out all your other vids :) P.S. love the training style
Thanks alot dude. I am studying for the exam now and this highlighted some weak points but overall I am ok. Really enjoyed that! Thanks and keep em coming!
Really appreciate these. You talking though the questions and easily taking two answers out is a great strategy and something I will implement when I take my sec+ test this weekend. Hope you have success with this channel!
@@WaseemKhan-pl5mw I took the 701. Main study resources were Jason Dion's Udemy course with the two practice test bundles. These videos helped me comprehend the quesitions better but I needed to learn the technical side of the questions first.
Thanks for sharing James! I’m taking the sec+ exam in about 8 weeks. You breaking the questions down to figure out exactly what they’re asking and using the process of elimination with the answers helped me grasp what should be my thought processes during the exam. Appreciate it! On to your next video>>>😎
I’m glad you found it useful! I currently have 2 of these videos uploaded right now, and hoping to have a 3rd sometime Friday if I get another set of questions sent to me in time. 8 weeks definitely gives you a good amount of time to study!
Got 15 out of 20!!!! Guess my studying are paying off😂 I see my problem now, I read it to fast without taking the time to understand what it’s asking of me. Thanks
Thanks a lot for the video! It's really helpful hearing you explain your logic. I have a question on #7. I would have chosen B because in the question says unauthorized access, so I think authentication which points towards B. Then I rule out C because I see encryption and think confidentiality... after the data has been accessed kind of. How can I.. not get that one wrong I guess lol
I feel like question 7 is quite arguable The end of the question says “prevent unauthorized access to the application”, not preventing the attacker from directly stealing the unencrypted data Implement multi-factor authentication has stronger matches for me
Yep. I think like you. "Question 7 and answer C? I would choose MFA because even if the database is encrypted, any user who logs in somehow will gain access to the data."
Hi James, I’m preparing to take CompTIA sec plus sometime in the near future. I appreciate for bringing up such excellent typical questions of the real ones in the exam!
Thank you! And absolutely, I had a fun time answering these so I'll definitely be doing more. I have a friend that helped me with this video that way I can answer the questions "live". We're planning on doing Security+ questions weekly and Pentest+ and CySA+ in the future if you're interested in those as well! Good luck with your Security+ exam
I would argue that for question 18 that D should actually be the MOST effective in preventing similar attacks because with tailgating specifically even if you enforce mandatory visitor badges and access logs, that would not stop a tailgater anyways because the whole idea of tailgating is unsuspectedly running in behind an employee that ALREADY has an approved badge, so unless this answer is implying that there is a front desk area, mantrap or access control vestibule then visitor badges and access logs will do nothing since the attacker is already sneaking past those measures by running in after an employee anyways. But D would actually stop this completely by teaching employees to look behind them to make sure nobody else is coming in and tailgating and also stop similar attacks such as piggybacking (intentionally allowing someone to tailgate) in the future. I would only say B is better if it explicitly mentioned the use of a man trap or access control vestibule in the answer, not the badges or access logs since the whole point in tailgating is to sneak past all of that stuff in the first place...
indicative - adjective 1. serving as a sign or indication of something. "having recurrent dreams is not necessarily indicative of any psychological problem" Similar: symptomatic expressive
I disagree with question 18. What would force the tailgating persons to sign in? The person opening the door didn’t notice it being done before so wouldn’t action the person to sign in
Security guards or someone at front that greets all persons who enter. Thats usually how its done. The person walking isnt really responsible for looking out for that, so they'll always miss it.
This is great. Thank you for that I have been looking for something like this for a long time. I hope you make more for security plus 601 lol I have 3 months before it’s too late
I'm applying for my ISC2 CC exam this week and being able to answer these questions is boosting my confidence knowing that this is best way to prepare for the exam. I wish you the best of luck mate! 👍🏽
i HATE number 18, the question says from tailgating, which means theres not just a door that someone can walk into freely. access is already limited and they had to sneak in behind a real employee which means they already have the physical security controls. D imo is the better answer and more logical because it trains people to be very aware of someone that shouldnt have access.
That is confusing indeed. By definition tailgating happens when an unauthorized individual gains access to a restricted area, it doesn't say that the area has to be secured. Think about restaurants that have a personnel only sign for the kitchens. They do not have badges etc. and someone can sneak behind them => tailgating. The thing is that even if you train your personnel you can't rely only on that for security (otherwise you wouldn't implement a lot of other security measures ). If you search strictly on how to prevent tailgating, the no.1 answer is physical security measures. Hope that helps in any way :D
Question Number #7. Seems to be poorly written. Which of the following is the BEST way to protect the CRM "APPLICATION" from unauthorized access? The question asks about protecting the "application's access". Yes the body does mention protecting data from unauthorized access, but that is not what the question asks. The answer should be "B", MFA for all users of the application. Authentication and Authorization: Implement strong authentication mechanisms such as multi-factor authentication (MFA) to verify the identity of users accessing the CRM application. Use role-based access control (RBAC) to define access levels and permissions for different user roles within the CRM system. Limit access to sensitive data based on users' roles and responsibilities. Regularly review and update user access privileges to ensure that they align with business needs and security requirements. Encrypting the data is a must, but does not prevent unauthorized access to the "APPLICATION". Encrypting the data prevents unauthorized access to the data, not the application.
Watch Part 2 here: ua-cam.com/video/quzvJoUIdh0/v-deo.html
Watch the CySA+ Series: ua-cam.com/video/xT6afzxvkJ0/v-deo.html
yes please
@@genayrose3981 Week 2 video is scheduled to post at 6pm CST today!
CYSA would be great
The CySA+ was one of the more fun exams I passed. I’ll see what I can do in the future 👍
any new security+ study material ?
Recently failed my sec + (703) but I’m not giving up, this video is helping me break down questions and better prepare for it a second time
Keep trying brother praying for you.
Taking mine in a couple of hours. Really hope I'm as ready as I think. Hope you get it soon man!
@@ironmann16 did you pass?
@@g3t2liv3 i did indeed!
I love how you read each question and then come back to key words after reading the answer choices... this was super engaging!! thank you.
Glad you liked it!!
Definitely drop more of these. The way you voiced your thought process on each question gives an idea on how we should go about thinking when it comes to the exam.
There’s another one scheduled for 6pm CST this evening. But yes, a big part to every CompTIA exam I’ve done required an understanding on the format of the question. Once you get that down, it becomes much clearer which of the possible answers to pick!
As a slow listener, I appreciate your reading speed. The clarity at which you speak is a blessing 🙌🏿 ❤❤❤ thank you
Thank you so much, this means a lot!
Bro I just passed my test and I owe you a big Thank You
Congrats on passing! That’s awesome!
Last second brush up with this video?@@allin...6285
Thank you Mr. James. I usually am not able to watch long videos without getting distracted, but the format and pace you had was perfect.
That means a lot, thank you!
Multiple "good" answers and only 1 best has challenged me today going over these. I test in 6 days. thanks for posting
@arnoldbailey8803 Are you studying for the 601 or 701? Do you know if this Practice exam for 601 or 701?
Good luck.
@@WaseemKhan-pl5mw I'm taking 701 and I was told these questions cover both and I've found that to be true for what I've studied and going through these questions it's nothing I haven't seen in the study materials for 701
@@arnoldbailey8803 hope you pass.
Post your result to motivate others. 👍
@@WaseemKhan-pl5mw I passed last weekend. 763 for a required 750 to pass. Thanks
@@arnoldbailey8803 congrats man I just took the test today and failed 683 from 750 but retake in 3 weeks so alll this is motivating!!
The additional knowledge you provide to every question and answer is Gold. Doing my cert soon. Wish me luck.
Thank you, I passed my SY0-601 exam yesterday after watching your videos. Although the questions in the test were diffrent but your methods helped in the test.
Congrats! Yeah, the questions in these videos are not exact questions. That would go against the NDA that we signed when we passed the Security+ exam. The questions are designed to be similar in format to what you'd expect, the same objectives, and a little more wording to help train test fatigue. I'm glad you passed, what's next?
Was it so difficult? Please lmk cus I’m studying for mine
@@thegamerx2515it’s not hard, just take your time to read and understand what the question is asking. If you are not sure about an answer, go with your first guess.
@@PunjabiMediaJunction thank you 🙏🏻
Did u pass with points by a close shave (barely passing) and What resources did you use to study and how did u prepare for the pbq's? those are my main concern as I assume those carry the most points that could make or break ur points. I hope not only you but anyone could help give me some help to my question thank you
Having a weekly practice questions are/is very, very helpful. Since multiple people are writing test questions in order to maintain their certs, you reading them and dissecting to find the answer is very helpful for folks who are not strong readers. Keep up the good work for Security+
This is exactly what I needed. I drive a lot and want to study so it helps that you read it out loud and slowly.
I'm glad that these videos are helpful! Thank you!
Thanks James. Questions are absolutely fantastic. I could pay for these types of questions, but who competes with FREE. Please keep posting such contents. Thanks again!!!
Appreciate the breakdowns on your answers and taking the time to explain explain. I'm just starting to get into Cyber Sec. I've always been into Tech, computers and networking so I'm familiar with a lot of terms and some knowledge, but for someone who hasn't done any schooling, it's nice to have breakdowns and explanations of each answers
I’m glad I can help. When I first started my cybersecurity journey the best way I learned was by learning why or why not I got a question wrong when doing practice exams. That gave me the opportunity to dig deeper on a concept I didn’t fully understand. Good luck on your journey!
I think that in Question 7 the correct one is B, not C. Answer C protects the CRM application from the attacker reading the data but it does not protect it from unauthorized access. I think Answer B is more accurate.
I just finished that question and immediately came to the comment section. I was thinking exactly the same way as you did. Not sure if C is correct on that question.
I agree but after he is finished with the question it shows the correct answer. But I think B should be correct as well. Tough question
No, only because the data stored on the CRM is is now encrypted following option C, so even if an attacker could get it they would not be able to decrypt the stored data. Obviously its preferred that they can't get in but if it were possible for them to get around the MFA (Which it is), they would compromise all there customer information.
No c is the correct answer
B is the correct answer
so helpful. On my security+ journey and didnt know how to prepare for the exams, so this was super informative and definitely helpful. thank you James 👊
Glad it was helpful! Make sure to also use other material and don't overdo it! Good luck, be sure to come back once you pass! Looking forward to hearing.
You've a knack for teaching and coaching. Well done.
This means a lot, thank you!
This is good stuff. You helped me better analyze the question to decipher the best answer.
Thanks for this! I feel as though I'm in a class/tutoring session. And it helps to know that my thought process is mimicking yours. Keep this up!
Glad it was helpful!
Question 19: A CASB incorporates encryption and protects sensitive info through DLP. By incorporating that, wouldn’t that encrypt already exposed data and at the same time protect that same data from future exposure?
It would have been helpful if you explained why you didn’t choose answer ’A’ 😊
excellent work bro, thank you for your input! im studying for sec+ and i cannot afford any of the paid practice exams, kudos to you for providing such quality content for free. your thought process is on point and questions are well thought
Great video thank you James. Subbed and liked! My biggest problem is not effectively reading the questions and jumping to the answer my monkey brain thinks is the best. Your breaking down the key words has helped massively thank you!
Thanks for this. I feel like I have a pretty good understanding of all of the concepts, but the way that the questions and answers are worded can be tricky.
Hey man! Thanks for this video. I'm also planning on starting my UA-cam channel this year based on my journey in Cybersecurity. Sharing and inspiring others, is something I'm thriving on doing! and already been building a portfolio on my website, doing some projects and studying for my Sec+
Best of luck!
I finally passed this exam after more than 60 days of study, with small interruptions. I am already ccna, ccna security, linux essentials, lpic-1,and CCNP. I must say the study guide has a lot of information to memorise and abbreviations, but unfortunately less hands on labs. Comptia should implement more practical labs, and reduce the theory, which will be forgotten in less than a year. My score was below 800, but for a job interview i doubt i have to know what measures i have to implement to stop intruders entering an airport secure area. It is not an easy exam, take your time, study at least 2 hours per day, do practice exams as much as you can, and you are good to go. One more thing, if you intend to start a career in cybersecurity, start learning linux first.
are you employed in a cybersecurity role?
@@aFutureSelf Yes I am.
@sybex200 what else would u recommend? Apart from learning Linux?
@@christophervilliers3788 I recommend to study hard.
This is really helpful coming them coming!
Really helpful video. Me and my wife are taking the CompTIA 701 in a week and this really helps a lot! Thank you so much! Going to your 2nd and 3rd video now :)
Very good breakdown and analysis with keywords.
Question 7 and answer C? I would choose MFA because even if the database is encrypted, any user who logs in somehow will gain access to the data.
I agree, i guessed MFA too. An encrypted database doesn’t stop someone from brute forcing or keylogging their way into the actual SaaS application. Not like its encrypted in the GUI. Im still studying but this video has opened my eyes to the tricks they play on the exam.
They won't have access to the data if the data is encrypted. They won't be able to use any of the encrypted data.
This is 5 months later so you probably already know this and have your cert already but I'm studying at the moment 😂
Gotta say I'm not convinced on Question 18... Definitely very on-the-edge between B and D, but having worked in a SCIF extensively, I still feel like D is just a hair more accurate. After all, if employees don't comply with access control policy, no amount of security measures will stop them from just walking right through the front door. Commandment 1 of the SCIF was don't hold the door, make sure you're the only one passing through and that the door closes behind you. Otherwise, badge/fingerprint MFA is useless. Probably just over-analysis on my part.
Awesome write-up though! Super useful. I'm identifying some gaps in my knowledge. Some of these questions really trip you up...
100% D, training is the MORE correct answer.
I feel like these questions rely more on theory than on the actual real life scenario. By definition tailgating means gaining access to unauthorized area. If you google how to prevent tailgating the no.1 answer is by enforcing physical security measures (this includes guards/security staff as well). If someone sneaks behind an employee who badges in it would be the guard's job to stop the intrusion. You have to train the security personnel more than the others.
D is more accurate for smaller places/ single company office. In a shared building you cannot rely on employees from other companies even if you trained yours.
Agreed - Strict policies pertaining to access to the building doesn't stop anyone from walking in behind you Tailgating/Piggybacking.
D is for sure the correct answer here.
This is great, but God Almighty in Heaven, I’ve never seen a video with so many commercials.
adblock is free but so is complaining I guess... how far ya gonna make it in a tech related field when you can't survive stuff like ads...
@@maxmout51 The thing is, I’m not a dick. I like supporting content creators by watching their ads because that’s how they earn an income from all of their hard work. People who use ad blockers are selfish and are hurting the creators. That being said, I find it hard to support the creator when there’s an ad every two minutes.
Drop down on premium :)
UA-cam premium for the win!
@@IanDalton But then you’re still not supporting the creators. You’re stealing revenue from the people who put in all the work.
By far the best practice test video I’ve watched. Good job, more please!!!
I appreciate that! I’ll have another one for Security+ available Friday evening :)
Man this is super helpful content, appreciate it! Wherever you take this channel Im sure if you put the same level of thought and care it will be great, keep it up!
I appreciate that!
Best real practice videos
With your analysis as well is perfect for understanding ❤
Keep going
I know it consumes time to do like these high quality videos.
I appreciate your effort 🙏👌
Thank you! I enjoy it, I'll have another one uploaded within the next few days!
@@ImCyberJamesare these for 601 or 701? Thanks
Part 1-3 are based on objectives that align with both 601 and 701. Part 4 is 701, since 701 has a LOT of similar objectives as the 601. @@WaseemKhan-pl5mw
I like that. Please post more questions. You're doing a great job. God bless!
Great video and explanation to help better understand each question. After watching part 1 I already feel much more comfortable for the exam!!! Please make more CompTIA Sec + videos!
There are 5 other ones :)
Question Number #19 Seems to be poorly written.
Which of the following actions would be "MOST effective" in ("mitigating the immediate risk" AND "preventing similar incidents in the future")
B. Encrypt all sensitive data in the cloud will mitigate the immediate risk for the data, but it will not prevent similar incidents with a data storage bucket from being accidentally misconfigured in the future.
The root cause of the INC is the misconfiguration, not the possible lack of encryption.
A. Implement CASB Cloud Access Security Broker is a cloud security solutions to monitor and enforce security policies for cloud storage. CASBs can provide visibility, control, and compliance for cloud environments, helping to prevent misconfigurations and unauthorized access.
A and B are correct for the question asked, "MOST effective" because of the conditional "AND" in ("mitigating the immediate risk" AND "preventing similar incidents in the future").
If the question asked, What is MOST effective" in "mitigating the immediate risk". Then yes the answer would be "B"!
Very good vids man. I am studying to take my SEC+ course and your videos are really helping me gauge where I am with the multiple choice portion of the exam.
I am looking forward on checking out all your other vids :)
P.S. love the training style
love how wide you are in this. makes you more trustworthy.
This is such a helpful video. Thank you for going over all options and explaining the thought process instead of simply stating the correct option
Thank you! Understanding the thought process was crucial for me when i was studying, I’m glad you also found it helpful!
Thank you so much, this is really helpful and we need more of these sessions, shout out from South Africa!!
I have 3 more videos up! Hello from the US!
Thanks alot dude. I am studying for the exam now and this highlighted some weak points but overall I am ok. Really enjoyed that! Thanks and keep em coming!
Thanks James
No problem!
Thank you for these videos! I listen at work👍🏾
Really appreciate these. You talking though the questions and easily taking two answers out is a great strategy and something I will implement when I take my sec+ test this weekend. Hope you have success with this channel!
Thank you, I'm glad you like it. Let me know after you pass!
@@ImCyberJames Passed with a 792/900! Once again I appreciate these videos and hope you have great success!
@@Jamesytech22 did you take 601 or 701? Did you just watch these videos or read books/ other resources too? Thanks n Congrats bro !
@@WaseemKhan-pl5mw I took the 701. Main study resources were Jason Dion's Udemy course with the two practice test bundles. These videos helped me comprehend the quesitions better but I needed to learn the technical side of the questions first.
Thanks for sharing James! I’m taking the sec+ exam in about 8 weeks. You breaking the questions down to figure out exactly what they’re asking and using the process of elimination with the answers helped me grasp what should be my thought processes during the exam. Appreciate it!
On to your next video>>>😎
I’m glad you found it useful! I currently have 2 of these videos uploaded right now, and hoping to have a 3rd sometime Friday if I get another set of questions sent to me in time. 8 weeks definitely gives you a good amount of time to study!
Thank you James!
What an amazing way to explain and break down info.
Thank you!
Phenomenal work James
I absolutely love the difficulty of these questions
Very insightful. Would love to see more of these Security + practice questions and maybe a few performance based questions.
I plan on doing one more within the next few weeks. I may do performance based questions as a separate video in the future
Cyber James, you rock fam!
thanks for the making the video James, this is a great resource for those of us studying for the security+.
Absolutely my pleasure glad I can help
Got 15 out of 20!!!! Guess my studying are paying off😂 I see my problem now, I read it to fast without taking the time to understand what it’s asking of me. Thanks
Thanks a lot for the video! It's really helpful hearing you explain your logic. I have a question on #7. I would have chosen B because in the question says unauthorized access, so I think authentication which points towards B. Then I rule out C because I see encryption and think confidentiality... after the data has been accessed kind of. How can I.. not get that one wrong I guess lol
Thank you. Nice methodology
I would definitely like more of these videos. I love this content keep it up. would like to see everything for cybersecurity!!!
I watched week 1 and week 2. Great explanation regarding the right and wrong answers. 👊🏾🔥
Thank you! I'll have the third one up within the next few days!
You’re amazing, I like your reasoning before answering and I want to watch and learn with you ❤I was engaged the whole time and
hello thank you for this.can you do more videos like this especiall for 701 security plus.
Thissss is how I love to study OMG THANK YOU DOR THIS JAMES ❤
❤️
I feel like question 7 is quite arguable
The end of the question says “prevent unauthorized access to the application”, not preventing the attacker from directly stealing the unencrypted data
Implement multi-factor authentication has stronger matches for me
RIGHT!!?? I would've gotten that wrong. I had the same logic as you.
Yep. I think like you. "Question 7 and answer C? I would choose MFA because even if the database is encrypted, any user who logs in somehow will gain access to the data."
Same. C doesn't make sense to me as it does not prevent unauthorized access to the application and MFA would do just that
Hi James, I’m preparing to take CompTIA sec plus sometime in the near future. I appreciate for bringing up such excellent typical questions of the real ones in the exam!
Thank you! And absolutely, I had a fun time answering these so I'll definitely be doing more. I have a friend that helped me with this video that way I can answer the questions "live". We're planning on doing Security+ questions weekly and Pentest+ and CySA+ in the future if you're interested in those as well! Good luck with your Security+ exam
Great video very helpful for car rides where I can’t do the tests in front of me. Much appreciated!
Thanks for the video I need more of these I'm taking Security + this summer 2024.
I should have another Friday evening CST!
I would argue that for question 18 that D should actually be the MOST effective in preventing similar attacks because with tailgating specifically even if you enforce mandatory visitor badges and access logs, that would not stop a tailgater anyways because the whole idea of tailgating is unsuspectedly running in behind an employee that ALREADY has an approved badge, so unless this answer is implying that there is a front desk area, mantrap or access control vestibule then visitor badges and access logs will do nothing since the attacker is already sneaking past those measures by running in after an employee anyways. But D would actually stop this completely by teaching employees to look behind them to make sure nobody else is coming in and tailgating and also stop similar attacks such as piggybacking (intentionally allowing someone to tailgate) in the future. I would only say B is better if it explicitly mentioned the use of a man trap or access control vestibule in the answer, not the badges or access logs since the whole point in tailgating is to sneak past all of that stuff in the first place...
great video, thought process on answering the questions was awesome
Thanks Kelvin I’m glad you enjoyed it
Great helpful content. I want more of it. Too many adverts though😢
This was great! on to PT 2!
indicative - adjective
1.
serving as a sign or indication of something.
"having recurrent dreams is not necessarily indicative of any psychological problem"
Similar:
symptomatic
expressive
Amazing!! please do more Security+ 701 please🤙
I'll be doing 1 more for Security+ 701!
Thank you for the video. It was very helpful and informative. I appreciate the explanations you shared for the solutions.
Thank you! This is so helpful watched the whole thing and it was great! Helps me walkthrough my own practice and thinking through questions
Glad it was helpful!
Please add more content. It’s very helpful.
Thank you, i have 3 more videos posted for Security+
I disagree with question 18. What would force the tailgating persons to sign in? The person opening the door didn’t notice it being done before so wouldn’t action the person to sign in
Security guards or someone at front that greets all persons who enter. Thats usually how its done. The person walking isnt really responsible for looking out for that, so they'll always miss it.
i loved this video super helpful as i prepare for my exam thanks!
Glad i can help, let me know when you pass!
Great video! Thanks for helping me study
Happy to help!
This is really helpful! Thanks!
This is great content, thank you!
This was a great set of questions, honestly a little more difficult on a few, really forcing attention to detail.
This is great. Thank you for that I have been looking for something like this for a long time. I hope you make more for security plus 601 lol I have 3 months before it’s too late
I have more in this series on my channel! Good luck!
I'd like to see more.🙂
Keep it up. I'm planning sec+ and isc2 cc in about 6 weeks so need these videos
Best of luck!
I'm applying for my ISC2 CC exam this week and being able to answer these questions is boosting my confidence knowing that this is best way to prepare for the exam. I wish you the best of luck mate! 👍🏽
awesome James! Thanks for this video explaination.
My pleasure!
Great. More Security + 701
For 7 i think it should be A, because in the question we are concerned for the security of the application, not the data itself in it.
I think B - MFA.
I found this really helpful!
Great video. Thanks man
No problem 👍
i HATE number 18, the question says from tailgating, which means theres not just a door that someone can walk into freely. access is already limited and they had to sneak in behind a real employee which means they already have the physical security controls. D imo is the better answer and more logical because it trains people to be very aware of someone that shouldnt have access.
That is confusing indeed. By definition tailgating happens when an unauthorized individual gains access to a restricted area, it doesn't say that the area has to be secured. Think about restaurants that have a personnel only sign for the kitchens. They do not have badges etc. and someone can sneak behind them => tailgating. The thing is that even if you train your personnel you can't rely only on that for security (otherwise you wouldn't implement a lot of other security measures ). If you search strictly on how to prevent tailgating, the no.1 answer is physical security measures. Hope that helps in any way :D
good video we need more man
Got more in the pipeline, thank you!
these questions are scary man
Great video
These questions were extremely different where did you get these questions from
Answer for question 7 seems wrong ? It should be either A or B. It clearly says unauthorised access ,can anyone confirm the answer ?
Great thanks!
Hi James, thanks for the video. Is the difficulty level of these questions same with the questions in the real exam?
Amazing 😍
Question 8 should be b
Low key not so sure about Question 3.
iv taken 5 comptia exams so far i can’t imagine their all this lengthy! Such long questions
These questions we’re pretty tough the answers are so detailed
They're designed to be long and tough like the real exam
working to get my sec+ this march, great walk through!
Good luck you got this!
Same
pentest+ please!
Question Number #7. Seems to be poorly written.
Which of the following is the BEST way to protect the CRM "APPLICATION" from unauthorized access?
The question asks about protecting the "application's access". Yes the body does mention protecting data from unauthorized access, but that is not what the question asks.
The answer should be "B", MFA for all users of the application.
Authentication and Authorization:
Implement strong authentication mechanisms such as multi-factor authentication (MFA) to verify the identity of users accessing the CRM application.
Use role-based access control (RBAC) to define access levels and permissions for different user roles within the CRM system. Limit access to sensitive data based on users' roles and responsibilities.
Regularly review and update user access privileges to ensure that they align with business needs and security requirements.
Encrypting the data is a must, but does not prevent unauthorized access to the "APPLICATION". Encrypting the data prevents unauthorized access to the data, not the application.