CompTIA Security+ · SY0-701
Objective 4.7: Explain the importance of automation and orchestration related to secure operations
Practice questions for Security+ objective 4.7, “Explain the importance of automation and orchestration related to secure operations.” Every question is original, written to the SY0-701 exam objectives, and comes with a full explanation — answer them below to see instant grading.
This objective sits in Domain 4.0: Security Operations, which is about 28% of the exam — so mastering it moves your readiness score meaningfully.
1.A security team is evaluating whether to automate firewall block actions in response to threat intelligence feeds. A key concern is accidentally blocking legitimate business traffic. Which control BEST mitigates this risk while preserving the benefits of automation?
2.A security team uses a SOAR platform to automatically create an incident ticket, look up the offending IP in a threat intelligence database, and escalate to a tier-2 analyst if the IP is known malicious — all within seconds of a SIEM alert firing. Which benefit of automation does this BEST illustrate?
3.A company's security automation reduces the mean time to detect (MTTD) and mean time to respond (MTTR) to security incidents by automatically correlating and triaging alerts. Which business benefit does this MOST directly produce?
4.A DevSecOps pipeline automatically runs static analysis, dependency scanning, and security unit tests on every code commit before allowing a merge to the main branch. Which automation concept does this represent?
5.A company automatically provisions cloud security groups with only the ports required for each application tier, using infrastructure-as-code. Which security principle does this automation BEST enforce?
Practice every objective, adaptively
CertBench tracks your score on 4.7 and every other objective, then builds a daily plan that targets your weakest spots. Start with the free diagnostic.
Take the free diagnostic