CompTIA SecAI+ Beta CY0-001 Dumps in PDF

Free CompTIA CY0-001 Real Questions (page: 15)

An AI architect reviews AI utilization and wants to improve the user experience. Which of the following should the architect review within the logs?

  1. Rate monitoring
  2. Model accuracy
  3. Access controls
  4. Data storage

Answer(s): B

Explanation:

To improve user experience, the architect should review model accuracy in the logs. High accuracy ensures users receive relevant, reliable responses, directly impacting satisfaction and effectiveness of the AI system.



A human resources officer is using AI to evaluate resumes and help select candidates that meet minimum criteria. To improve the results, the human resources officer adjusts the query parameters and includes an example resume that matches a successful candidate. Which if the following best describes this query?

  1. Distillation
  2. Prompt template
  3. One-shot prompting
  4. System role

Answer(s): C

Explanation:

One-shot prompting provides the model with a single example (in this case, a successful resume) to guide how it should process future inputs. This technique helps the AI better align its output with the desired evaluation criteria.



A line of business wants to onboard an application that uses a custom AI model for employee assessments.

The Chief Information Officer (CIO) agrees to allow the engagement to proceed but first wants a threat model. Which of the following is the most appropriate to use for an AI threat model?

  1. Responsible AI
  2. Adversarial Threat Landscape for AI Systems (ATLAS)
  3. Organization for Economic Co-operation and Development (OECD)
  4. International Organization for Standardization (ISO)

Answer(s): B

Explanation:

ATLAS is specifically designed for creating AI threat models. It catalogs adversarial techniques, tactics, and use cases that target AI systems, making it the most appropriate framework for assessing risks to a custom AI model in employee assessments.



A security analyst finds that the AI system is under a denial-of-wallet attack. Which of the following should the analyst enforce to protect the company? (Choose two.)

  1. Endpoint access controls
  2. Content delivery network (CDN)
  3. Model fine-tuning
  4. Modality controls
  5. Application programming interface (API) rate controls
  6. Output token controls

Answer(s): E,F

Explanation:

API rate controls limit the number of requests within a set timeframe, preventing attackers from overloading the system and driving up costs.
Output token controls restrict the length of responses, reducing unnecessary token usage that attackers might exploit in a denial-of-wallet attack.



A financial organization implements a new AI-based fraud detection system to flag suspicious transactions. A security analyst discovers that it occasionally blocks legitimate transactions. Which of the following is the best recommendation?

  1. Retaining the model with more data and recent transaction patterns
  2. Implementing AI token usage and rate limits
  3. Encrypting all the data processed by AI and applying further access controls
  4. Rolling back the model and using a traditional fraud detection system

Answer(s): A

Explanation:

False positives occur when the AI model lacks sufficient or representative training data. Retraining the model with more diverse and recent transaction patterns improves accuracy, reducing the chance of legitimate transactions being incorrectly flagged.



Which of the following technologies is used in deepfake?

  1. Generative adversarial network (GAN)
  2. Multi-shot prompting
  3. Prompt engineering
  4. Transfer learning

Answer(s): A

Explanation:

Deepfakes are primarily created using GANs, where two neural networks (a generator and a discriminator) compete to produce highly realistic synthetic media, such as manipulated videos or images.



During the selection of a machine learning (ML)-based threat classification model, a cybersecurity administrator verifies that label distribution is highly unbalanced. Which of the following processing techniques should the engineer use to balance the model?

  1. Data lineage
  2. Data augmentation
  3. Data provenance
  4. Data verification

Answer(s): B

Explanation:

When label distribution is highly unbalanced, data augmentation generates additional synthetic samples for the underrepresented classes. This balances the dataset, improving the ML model's ability to classify threats accurately across all categories.



A healthcare organization plans to deploy a chatbot for appointment scheduling and patient records. Which of the following is the first step a security administrator should take?

  1. Implement prompt firewalls.
  2. Enable role-based access management
  3. Conduct a risk assessment.
  4. Use a secure data communication channel for chat.

Answer(s): C

Explanation:

Before deploying an AI chatbot that will handle sensitive healthcare data, the first step is to conduct a risk assessment. This identifies potential threats, compliance requirements (such as HIPAA), and security gaps, ensuring proper controls are planned before implementation.



Share your comments for CompTIA CY0-001 exam with other users:

M
mo
6/11/2026 9:00:16 AM

beautiful exams

AI Tutor 👋 I’m here to help!