Practice Free SC-730 Exam Online Questions
Scenario: You receive an unexpected SMS text message stating: "FedEx: Your package delivery is delayed. Click this link to reschedule immediately." You are not expecting any packages.
What type of attack is this?
- A . A targeted smishing (SMS phishing) attack attempting to steal your personal credentials or data.
- B . A sophisticated physical tailgating attempt targeting the corporate office’s main shipping dock.
- C . An advanced persistent threat exploiting a zero-day vulnerability in the mobile operating system.
- D . A malicious deepfake video generated by artificial intelligence to impersonate a delivery driver.
When creating and managing your passwords for various corporate and personal systems, which of the following practices is currently recommended by security professionals?
- A . Using your company name followed by the current year and an exclamation mark (e.g., Company2026!).
- B . Changing a simple password every week by incrementing a number at the very end of the string.
- C . Creating one highly complex password and utilizing it across all your work and personal systems.
- D . Using a long, unique passphrase for every single account and storing them in an approved password manager.
Scenario: You receive a phone call from an unknown number. The caller claims to be the "Lead IT Director" and aggressively demands your current network password to fix a critical server failure immediately.
How should you handle this?
- A . Provide a slightly incorrect password to verify if the caller is truly an IT administrator.
- B . Provide the password immediately to ensure the critical corporate server is fixed quickly.
- C . Refuse to provide the password, hang up, and verify the issue through official IT channels.
- D . Ask the caller a few personal questions to establish their identity before helping them out.
Scenario: Under the Cloud Shared Responsibility Model (such as using Microsoft 365), which of the following tasks is exclusively the responsibility of the cloud service provider?
- A . The classification and labeling of sensitive proprietary business documents.
- B . The enforcement of multi-factor authentication on individual employee accounts.
- C . The physical security and perimeter access of the data center facilities.
- D . The generation and secure storage of complex passwords for the administrators.
Scenario: A Logistics Coordinator finds an expensive-looking USB flash drive on the warehouse floor labeled "2026 Executive Bonus Structure." They are curious but remember their recent cybersecurity training.
What is the correct action?
- A . Plug the USB drive into an off-network computer to safely inspect the internal files and documents.
- B . Give the USB drive directly to the physical security team or the IT department immediately.
- C . Throw the USB drive directly into the standard garbage bin located outside the main warehouse.
- D . Plug the USB drive into their corporate laptop to easily identify the original owner of the device.
Scenario: A Payroll Manager is working from a hotel lobby and needs to urgently submit the weekly payroll. The corporate VPN software is completely unresponsive.
What is the safest alternative to complete this sensitive task?
- A . Submit the payroll immediately using the hotel’s free public Wi-Fi to ensure nobody gets paid late.
- B . Ask the hotel front desk clerk to submit the payroll document using their secure reception computer.
- C . Use a personal cellular smartphone as a secure Wi-Fi hotspot to bypass the hotel’s public network.
- D . Connect to the hotel Wi-Fi but type the credentials extremely fast to avoid any network sniffing.
The IT department mandates the use of an approved enterprise password manager.
What is the primary security benefit of integrating this tool into your daily workflow?
- A . It actively scans the computer’s hard drive to detect and remove malicious software.
- B . It automatically intercepts and deletes all phishing emails before they reach the inbox.
- C . It completely removes the need to use multi-factor authentication across the network.
- D . It generates, auto-fills, and securely stores highly complex passwords for every system.
Scenario: Your computer screen suddenly displays a red window demanding a cryptocurrency payment to unlock your files, which now have a .locked extension.
What is your immediate first step?
- A . Pay the requested ransom amount immediately using a corporate credit card to recover files.
- B . Disconnect the computer from the network immediately to prevent the infection’s spread.
- C . Restart the computer repeatedly to see if the operating system will automatically fix the files.
- D . Forward the locked files to the IT department so they can examine the network damage.
Under which of the following circumstances is formal "escalation" to senior management or the legal department strictly required during a security event?
- A . Your corporate account is temporarily locked because you typed the incorrect password three times.
- B . A shared office printer experiences a critical hardware failure and stops printing documents.
- C . You discover that a database containing thousands of customer credit card numbers was exposed online.
- D . Your computer requires a mandatory restart to finish installing standard operating system updates.
Scenario: You accidentally open a malicious email attachment. Suddenly, your screen flashes, and all your files begin changing to a .locked extension while a ransom note appears on your desktop.
What is your very first action?
- A . Pay the requested ransom amount immediately using a corporate credit card to avoid losing the data.
- B . Restart the computer multiple times to see if the operating system will automatically fix the locked files.
- C . Forward the encrypted files to the IT department so they can thoroughly examine the network damage.
- D . Disconnect the computer from the network immediately (unplug Ethernet or Wi-Fi) to stop the spread.