Log in Start practising free
CompTIA CySA+

Reporting & Communication

34 free practice questions with explanations

Practise all 34 questions free →

PassNova has 34 free CompTIA CySA+ practice questions on Reporting & Communication, each with a clear explanation. Practise them in the browser with instant feedback — 100% free, no sign-up, on any device. Updated for 2026.

Sample questions

Reporting & Communication: example questions & answers

Here are 6 example questions from this topic. Practise the full set of 34 free in the browser.

  1. A security team measures the average time from when an incident first occurs to when it is detected. Which metric are they tracking?

    • A Annual rate of occurrence
    • B Recovery point objective (RPO)
    • C Maximum tolerable downtime (MTD)
    • D Mean time to detect (MTTD)

    Answer: Mean time to detect (MTTD) measures how long it takes to discover an incident after it begins, a key performance metric for security operations reporting.

  2. After an incident, the team identifies the underlying flaw that allowed it to happen and recommends preventing recurrence. This part of the report is the:

    • A Executive bonus summary
    • B Marketing impact statement
    • C Vendor renewal schedule
    • D Root cause analysis

    Answer: Root cause analysis identifies the fundamental reason an incident occurred so that corrective actions can prevent it from happening again.

  3. An analyst must report a confirmed breach to law enforcement, regulators, and affected customers. Maintaining a predefined list of who must be informed and how is part of which plan?

    • A Network addressing scheme
    • B Communication (stakeholder notification) plan
    • C Capacity planning document
    • D Software licensing register

    Answer: A communication plan defines stakeholders, escalation paths, and notification methods so the right parties are informed correctly during an incident.

  4. When two organisations agree to share threat intelligence, a colour-coded scheme is often used to indicate how widely each piece of information may be redistributed. Which scheme is this?

    • A RAID array levels
    • B The CIA triad
    • C Traffic Light Protocol (TLP)
    • D OSI seven-layer model

    Answer: The Traffic Light Protocol (TLP) uses colour labels such as RED, AMBER, GREEN, and CLEAR to govern how shared information may be disseminated.

  5. A monthly metric tracks the average elapsed time between when a vulnerability is identified and when it is fixed. Which key performance indicator is this?

    • A Mean time to remediate (MTTR)
    • B Bandwidth utilisation
    • C Cost per acquisition
    • D Net promoter score

    Answer: Mean time to remediate (MTTR) reports the average time taken to fix identified vulnerabilities and is a core vulnerability management reporting metric.

  6. A security manager presents a one-page summary of overall risk posture, trends, and key metrics to the board of directors. This visual reporting format is best described as a:

    • A Dashboard
    • B Raw syslog export
    • C Packet capture file
    • D Disassembly listing

    Answer: A dashboard presents key metrics and trends in a concise, visual format suited to executive and board-level audiences.

Start practising Reporting & Communication →
More CompTIA CySA+ topics

Practise another topic

Security Operations65 questions Vulnerability Management51 questions Incident Response & Management50 questions
← Back to CompTIA CySA+