CompTIA AI+ AI0-001 (AI0-001) — Questions 451525

1000 questions total · 14pages · All types, answers revealed

Page 6

Page 7 of 14

Page 8
451
MCQhard

A team is deploying a generative AI model for a real-time customer-facing application. They need to balance cost and latency. Which deployment strategy is MOST suitable?

A.Monolithic API with serverless functions
B.Edge deployment on user devices
C.Batch processing with synchronous requests
D.AI microservices with streaming responses and async processing queues
AnswerD

Microservices with streaming and async queues reduce perceived latency and handle variable load efficiently.

Why this answer

Option D is correct because AI microservices with streaming responses and async processing queues decouple inference from the request lifecycle, allowing the system to handle variable loads efficiently while maintaining low latency for real-time interactions. This architecture balances cost by scaling only the necessary components (e.g., GPU-backed inference services) and uses streaming (e.g., Server-Sent Events or WebSockets) to deliver partial results, reducing perceived latency for the customer.

Exam trap

Cisco often tests the misconception that serverless functions (Option A) are always the cheapest and fastest option, but they ignore cold-start latency and the overhead of monolithic orchestration in real-time AI workloads.

How to eliminate wrong answers

Option A is wrong because a monolithic API with serverless functions introduces cold-start latency and tight coupling, which is unsuitable for real-time customer-facing applications where consistent sub-second response times are critical. Option B is wrong because edge deployment on user devices requires significant on-device compute resources, model compression, and frequent updates, which increases deployment complexity and cost, and may not be feasible for large generative models. Option C is wrong because batch processing with synchronous requests is designed for high-throughput, non-real-time workloads (e.g., nightly report generation) and would force users to wait for batch completion, violating the real-time requirement.

452
MCQmedium

A data scientist needs to explain why a specific loan application was rejected by a tree-based model. The model is complex and not inherently interpretable. Which method should the data scientist use to provide a local explanation for this single prediction?

A.LIME
B.SHAP values
C.Model cards
D.Attention visualization
AnswerA

LIME creates a simple, interpretable model around the prediction to explain the decision locally, making it ideal for this task.

Why this answer

LIME (Local Interpretable Model-agnostic Explanations) is the correct choice because it is specifically designed to provide local explanations for individual predictions by approximating the complex model with a simpler, interpretable surrogate model around that specific instance. For a tree-based model that is not inherently interpretable, LIME can explain why a single loan application was rejected by perturbing the input and observing the changes in predictions, making it ideal for this use case.

Exam trap

Cisco often tests the distinction between local vs. global interpretability methods, and the trap here is that candidates may choose SHAP values (Option B) because they are also popular for explanations, but SHAP is more suited for global feature importance and can be overkill or less intuitive for a single-instance explanation compared to LIME's direct local surrogate approach.

How to eliminate wrong answers

Option B is wrong because SHAP values, while also providing local explanations, are based on cooperative game theory and compute Shapley values, which can be computationally expensive for complex tree-based models and may not be as straightforward for a single-prediction explanation as LIME's perturbation-based approach. Option C is wrong because model cards are documentation artifacts that describe the overall model's intended use, performance, and limitations, not a method for generating local explanations for individual predictions. Option D is wrong because attention visualization is a technique used primarily in neural network models (e.g., transformers) to highlight which parts of the input the model focuses on, and it is not applicable to tree-based models like decision trees or random forests.

453
Multi-Selectmedium

A team is setting up a test suite for an AI system that includes a data pipeline, an LLM API call, and an output evaluation step. Which TWO types of tests should they prioritize to ensure the system's reliability?

Select 2 answers
A.End-to-end tests simulating full user workflows
B.Unit tests for data pipeline components
C.Regression tests comparing output to previous versions
D.Load tests to measure performance under high traffic
E.Integration tests for API calls to the LLM
AnswersB, E

Unit tests validate individual data transformations, catching bugs early.

Why this answer

Unit tests for data pipelines catch data transformation errors early, and integration tests for API calls verify that the LLM endpoint responds correctly. E2E tests and regression tests are also important but not the first priority for reliability.

454
Multi-Selecthard

An organization wants to fine-tune a 7B parameter LLM for a specialized legal document summarization task. They have a small labeled dataset (500 examples) and limited GPU budget. Which THREE techniques should they consider? (Choose three.)

Select 3 answers
A.Use LoRA (Low-Rank Adaptation)
B.Create an instruction-tuning dataset with input-summary pairs
C.Train a new model from scratch on legal text
D.Full fine-tuning of all model parameters
E.Use QLoRA with 4-bit quantization
AnswersA, B, E

LoRA freezes base weights and trains small adapters, drastically reducing memory.

Why this answer

PEFT methods like LoRA and QLoRA are designed for efficient fine-tuning with limited resources. Instruction tuning datasets improve task performance. Full fine-tuning is too expensive.

455
MCQmedium

A company deploys an LLM chatbot that has access to a database of customer orders. They want to prevent the LLM from revealing order details unless the user is authenticated as the owner. Which security control should be implemented?

A.Output filtering
B.Rate limiting
C.Input validation and sanitization
D.Access controls on the model and API
AnswerD

Access controls enforce authentication and authorization, ensuring only the order owner can retrieve their details.

Why this answer

Access controls on the model and API (Option D) are the correct security control because they enforce authentication and authorization at the API gateway or model endpoint level, ensuring that only the authenticated owner can query their own order details. This prevents unauthorized users from invoking the LLM to retrieve sensitive data, regardless of the prompt content. Without such access controls, the LLM would have no inherent mechanism to verify user identity before processing requests.

Exam trap

Cisco often tests the misconception that output filtering or input sanitization alone can prevent data leakage, when in fact they fail to address the root cause—lack of authentication and authorization at the API or model access layer.

How to eliminate wrong answers

Option A is wrong because output filtering only inspects and blocks certain patterns in the model's responses after generation, but it cannot prevent an authenticated user from seeing another user's data if the model has access to all orders; it also does not enforce user identity. Option B is wrong because rate limiting controls the frequency of requests to prevent abuse or denial-of-service, but it does not authenticate users or restrict access to specific data based on ownership. Option C is wrong because input validation and sanitization protect against injection attacks (e.g., prompt injection) but do not verify the user's identity or enforce data ownership; the LLM could still return another user's order if the prompt is crafted to request it.

456
MCQmedium

A security team needs to ensure that all data used for AI model training in the cloud is encrypted at rest and in transit. Which set of measures meets this requirement on AWS?

A.Use Security Groups and Network ACLs
B.Use client-side encryption and store keys in AWS Secrets Manager
C.Enable S3 default encryption with SSE-S3 and use HTTPS for API calls
D.Enable VPC peering and use VPN connections
AnswerC

SSE-S3 encrypts data at rest in S3; HTTPS encrypts data in transit. This covers both requirements.

Why this answer

AWS provides KMS for at-rest encryption and TLS for in-transit encryption. These are standard practices to secure data across the AI pipeline.

457
MCQeasy

A team deploys a machine learning model as a REST API. They want to monitor model drift. Which metric is MOST appropriate for detecting drift in the input data distribution?

A.Model accuracy on a recent holdout set.
B.Population stability index (PSI) comparing training and recent data.
C.F1 score on the training data.
D.Root mean squared error (RMSE) on test data.
AnswerB

PSI directly quantifies distribution shift.

Why this answer

Population stability index (PSI) is the most appropriate metric for detecting drift in input data distribution because it directly measures the shift between the training data distribution and the recent production data distribution. PSI is calculated by binning both distributions and computing the sum of (proportion in bin of recent data minus proportion in bin of training data) times the natural log of their ratio, making it sensitive to changes in feature distributions without requiring ground truth labels.

Exam trap

The trap here is that candidates often confuse performance metrics (accuracy, F1, RMSE) with distribution drift detection, not realizing that PSI specifically quantifies covariate shift without needing ground truth labels.

How to eliminate wrong answers

Option A is wrong because model accuracy on a recent holdout set measures performance degradation, not input data distribution drift; accuracy can drop due to concept drift or other factors, and it requires labeled data which may not be available in production. Option C is wrong because F1 score on the training data is a measure of model fit on historical data, not a metric for detecting changes in the input distribution of new data. Option D is wrong because root mean squared error (RMSE) on test data evaluates prediction error on a static test set, not the distributional shift between training and current production inputs.

458
MCQmedium

A team is developing a threat model for an AI system that processes user uploads. Using STRIDE, which threat involves an attacker modifying the model's training data to cause misclassification?

A.Tampering
B.Spoofing
C.Repudiation
D.Information disclosure
AnswerA

Tampering is the modification of data; data poising is a tampering attack.

Why this answer

Tampering is the STRIDE category for unauthorized modification of data. Data poisoning is a form of tampering with training data.

459
MCQmedium

A machine learning engineer is deploying a real-time anomaly detection system for manufacturing sensor data. The system must process thousands of readings per second with minimal latency. Which deployment architecture is BEST suited?

A.Batch processing using Apache Spark jobs triggered hourly
B.Serverless functions deployed on a CDN
C.A monolithic web application with a relational database
D.AI microservices with an async processing queue and streaming responses
AnswerD

Microservices with async queues and streaming allow scalable, low-latency processing of high-throughput data.

Why this answer

AI microservices with async processing queues and streaming responses can handle high throughput and low latency for real-time data.

460
Multi-Selecteasy

Which TWO actions are most appropriate for managing model drift in a production AI system?

Select 2 answers
A.Freeze the model to prevent any changes
B.Roll back to a previous model version if performance degrades
C.Periodically retrain the model on recent data
D.Manually review all model predictions
E.Implement automated monitoring to detect drift indicators
AnswersC, E

Regular retraining helps the model adapt to new patterns.

Why this answer

Option C is correct because periodically retraining the model on recent data is a fundamental strategy to combat model drift, ensuring the model adapts to changes in the underlying data distribution (e.g., concept drift or covariate shift). This aligns with MLOps best practices for maintaining model accuracy over time in production AI systems.

Exam trap

CompTIA often tests the distinction between reactive fixes (like rollback) and proactive, automated strategies (like monitoring and retraining), tricking candidates into choosing rollback as a valid long-term drift management action.

461
Multi-Selectmedium

A financial services firm has deployed an AI model for real-time credit scoring. The operations team needs to ensure the model remains reliable and compliant over time. Which TWO actions should the team prioritize? (Choose two.)

Select 2 answers
A.Implement automated monitoring for data drift and model performance metrics.
B.Deploy a model versioning system with automated rollback capabilities.
C.Establish a governance process for version-controlled model deployment and retraining.
D.Schedule monthly manual retraining of the model using historical data.
E.Generate weekly compliance reports for regulatory review.
AnswersA, C

Monitoring data drift and performance metrics is proactive and addresses the root cause of model degradation.

Why this answer

Option A is correct because automated monitoring for data drift and model performance metrics is essential for maintaining reliability and compliance in a real-time credit scoring system. Data drift detection (e.g., using population stability index or KL divergence) alerts the team when input distributions shift, which could degrade model accuracy and lead to non-compliant decisions. Continuous monitoring of metrics like AUC, precision, and recall ensures the model stays within regulatory thresholds without manual intervention.

Exam trap

CompTIA often tests the distinction between operational monitoring/governance actions versus reactive or administrative tasks, so candidates may mistakenly choose versioning (B) or reporting (E) instead of recognizing that continuous monitoring (A) and governance processes (C) directly address reliability and compliance over time.

462
Multi-Selecthard

An organization is deploying a deep learning model in production. Which THREE components are essential for maintaining model performance over time?

Select 3 answers
A.Performance monitoring
B.Hyperparameter tuning
C.Model retraining pipeline
D.Feature importance analysis
E.Data drift detection
AnswersA, C, E

Continuous monitoring of key metrics alerts teams to degradation in model performance.

Why this answer

Performance monitoring (A) is essential because it provides continuous visibility into model metrics such as accuracy, latency, and throughput, enabling early detection of degradation. Without ongoing monitoring, teams cannot identify when a model's predictions deviate from expected behavior, which is critical for maintaining reliability in production.

Exam trap

CompTIA often tests the distinction between development-phase activities (hyperparameter tuning, feature analysis) and production-phase operational components (monitoring, retraining, drift detection), so candidates mistakenly include tuning or analysis as essential for ongoing maintenance.

463
MCQmedium

A company wants to use a pre-trained model from a cloud-based AI service but must ensure that customer data is not used to improve the service. Which configuration should they choose?

A.Set data retention to 30 days
B.Enable content filtering
C.Use a data policy that prohibits training on customer data
D.Enable rate limiting
AnswerC

This option ensures customer data is not used to improve Azure OpenAI models.

Why this answer

Option C is correct because the 'No Training' data policy option explicitly prevents the cloud AI service from using customer prompts and completions to retrain or improve the underlying models. This configuration is essential for compliance with data privacy requirements, ensuring that customer data remains isolated from model improvement pipelines.

Exam trap

The trap here is that candidates often confuse data retention settings (which control storage duration) with data usage policies (which control whether data is used for training), leading them to select Option A instead of the correct data privacy policy that prevents training.

How to eliminate wrong answers

Option A is wrong because setting data retention to 30 days controls how long input and output data is stored for monitoring or debugging, but it does not prevent that data from being used for model training during that period. Option B is wrong because enabling content filtering only blocks harmful or policy-violating content from being generated; it has no effect on whether customer data is used to improve the service. Option D is wrong because rate limiting controls the number of API requests per time unit to manage load and cost, but it does not address data usage for training purposes.

464
MCQmedium

A financial institution is training a risk assessment model. The dataset includes customer credit scores, income, age, and past loan defaults. During feature engineering, a data engineer creates a new feature 'income_to_debt_ratio'. Which type of feature engineering technique is this?

A.Feature encoding
B.Feature scaling
C.Feature selection
D.Feature combination
AnswerD

Creating a ratio from two continuous variables is a combination technique to capture interaction.

Why this answer

Option D is correct because 'income_to_debt_ratio' is created by combining two existing features (income and debt) into a single derived feature. This is a classic example of feature combination (also known as feature crossing or feature construction), where arithmetic operations or logical rules are applied to existing variables to generate new predictive signals. The goal is to capture interactions or relationships that the original features alone may not express linearly.

Exam trap

CompTIA often tests the distinction between feature engineering techniques by presenting a derived feature and expecting candidates to recognize it as feature combination rather than confusing it with scaling or encoding.

How to eliminate wrong answers

Option A is wrong because feature encoding transforms categorical variables into numerical representations (e.g., one-hot encoding, label encoding), not create new numerical ratios from existing numerical features. Option B is wrong because feature scaling normalizes or standardizes the range of feature values (e.g., min-max scaling, z-score normalization) without generating new features. Option C is wrong because feature selection reduces the number of features by choosing a subset of the original ones (e.g., using correlation analysis or recursive feature elimination), not by engineering new derived attributes.

465
Multi-Selectmedium

A company is choosing between fine-tuning and RAG for a legal document assistant. Which TWO factors would MOST strongly favor RAG over fine-tuning?

Select 2 answers
A.The legal documents are updated frequently (weekly)
B.The model needs to understand complex legal terminology
C.The queries require deep reasoning across multiple documents
D.The assistant must cite specific sources for its answers
E.The company has limited compute budget for training
AnswersA, D

RAG retrieves current documents at inference time, avoiding costly retraining cycles.

Why this answer

RAG allows dynamic retrieval from a changing document base without retraining, and provides citation sources for transparency — critical in regulated domains like law.

466
MCQeasy

An AI practitioner needs to extract key phrases from a large collection of customer support emails for trend analysis. Which technique is MOST suitable?

A.Named entity recognition (NER)
B.Language translation
C.Text classification
D.Sentiment analysis
AnswerA

NER extracts specific entities (e.g., product names, problems) which can serve as key phrases for trend analysis.

Why this answer

Named entity recognition (NER) is the most suitable technique because it automatically identifies and extracts predefined entities such as names, dates, product names, and other key phrases from text. This directly supports extracting key phrases from customer support emails for trend analysis. Other techniques like language translation, text classification, and sentiment analysis do not focus on extracting specific phrases.

467
Multi-Selectmedium

A data scientist is preparing a dataset for a regression model. The dataset contains 100 features, some of which are highly correlated. To improve model performance and reduce overfitting, which TWO techniques should the data scientist apply? (Select TWO)

Select 2 answers
A.Feature selection
B.Dimensionality reduction (e.g., PCA)
C.Data augmentation
D.Adding more hidden layers to the neural network
E.Increasing the learning rate
AnswersA, B

Correct: selecting relevant features reduces noise and overfitting.

Why this answer

Feature selection reduces the number of features, and dimensionality reduction (e.g., PCA) handles multicollinearity, both helping to reduce overfitting.

468
MCQmedium

A company is deploying a pre-trained image classification model from a third-party repository. Which supply chain security practice is MOST critical before integration?

A.Detecting backdoored models
B.Monitoring for anomalous inputs
C.Generating a software bill of materials (SBOM)
D.Performing red teaming
AnswerA

Correct. Backdoor detection is critical to ensure the model is safe.

Why this answer

Detecting backdoored models is the most critical practice because pre-trained models from third-party repositories can contain hidden malicious behaviors (backdoors) that trigger on specific inputs, compromising the integrity of the entire AI system. Unlike traditional software, models are opaque and can be tampered with during training or conversion, making backdoor detection essential before any integration.

Exam trap

CompTIA often tests the distinction between pre-integration supply chain security (backdoor detection) and post-deployment defenses (anomaly monitoring, red teaming), leading candidates to mistakenly choose runtime controls instead of the critical initial check.

How to eliminate wrong answers

Option B is wrong because monitoring for anomalous inputs is a runtime defense that assumes the model is already trusted; it does not address the pre-integration risk of a backdoored model. Option C is wrong because generating a software bill of materials (SBOM) is useful for tracking software dependencies but does not detect malicious modifications within the model weights or architecture. Option D is wrong because red teaming tests the system's security posture after integration, but it is not the most critical practice before integration—backdoor detection must occur first to prevent a compromised model from being deployed.

469
MCQmedium

A healthcare AI startup has developed a model to detect diabetic retinopathy from retinal images. The model achieved 96% sensitivity and 94% specificity on a validation set from the same distribution as the training data. After deployment in a rural clinic, the model's sensitivity drops to 80%. The data team analyzes the clinical images from the clinic and finds that the images have lower resolution and different lighting conditions compared to the training dataset. The team has the ability to collect more data from the clinic and retrain the model. What is the BEST course of action?

A.Reduce the model's complexity by removing several convolutional layers to improve generalization.
B.Apply transfer learning using a model pre-trained on a different medical imaging dataset.
C.Implement adversarial validation to identify which images are out-of-distribution and filter them out.
D.Collect additional retinal images from the rural clinic, label them, and retrain the model including the new data.
AnswerD

Adding data from the target domain re-aligns the model with the deployment environment.

Why this answer

Option D is correct because the performance drop is caused by a domain shift (lower resolution, different lighting) between the training and deployment data. The most direct and effective solution is to collect labeled images from the target domain (rural clinic) and retrain the model, which aligns with the principle of domain adaptation through data augmentation. This approach addresses the root cause by exposing the model to the actual distribution it will encounter in production.

Exam trap

CompTIA often tests the misconception that reducing model complexity or using generic transfer learning can fix domain shift, when in reality the most reliable solution is to retrain with data from the target deployment environment.

How to eliminate wrong answers

Option A is wrong because reducing model complexity (e.g., removing convolutional layers) would likely decrease capacity to learn domain-specific features, potentially worsening performance rather than fixing the domain shift. Option B is wrong because transfer learning from a different medical imaging dataset (e.g., X-rays or MRIs) may not help if the source domain still differs significantly from the rural clinic's retinal images; it could introduce irrelevant features or negative transfer. Option C is wrong because adversarial validation only identifies out-of-distribution samples but does not improve model performance on those samples; filtering them out would reduce the usable data and fail to address the need for the model to work on the clinic's images.

470
MCQmedium

Refer to the exhibit. A team created an access policy for a fraud detection model endpoint. An intern reports being unable to access the model for testing. Reviewing the policy, what is the most likely cause?

A.The intern's role is not included in the allowed roles
B.The policy JSON has a syntax error
C.The endpoint path is incorrect
D.The intern's role is explicitly denied in the policy
AnswerD

Denied roles override any allowed list.

Why this answer

Option D is correct because the exhibit shows an explicit `Deny` effect for the intern's role in the policy. In AWS IAM (or similar cloud provider) access policies, an explicit deny overrides any allow, so even if the intern's role is listed in allowed roles, the explicit deny will block access. This is a fundamental principle of IAM policy evaluation logic.

Exam trap

CompTIA often tests the explicit deny override principle, where candidates mistakenly think that listing a role in allowed roles guarantees access, ignoring that an explicit deny in the same policy will block it.

How to eliminate wrong answers

Option A is wrong because the intern's role is actually listed in the allowed roles section, so the issue is not a missing role. Option B is wrong because the policy JSON is syntactically valid (no missing commas, brackets, or quotes) and would parse correctly. Option C is wrong because the endpoint path is correctly specified in the policy's `Resource` element, matching the model endpoint ARN.

471
MCQmedium

A company is deploying an AI model to recommend products. The model's training data included historical purchases from the past two years, but the business environment has changed significantly due to a market shift. What is the most likely issue affecting model performance?

A.Concept drift
B.Overfitting
C.Underfitting
D.Data leakage
AnswerA

Concept drift is the change in the underlying relationship between features and target variable over time, making the model outdated.

Why this answer

Concept drift occurs when the statistical properties of the target variable change over time, degrading model performance. In this scenario, the market shift alters customer purchasing patterns, making the historical training data (from the past two years) no longer representative of current behavior. This is the most likely issue because the model's recommendations will be based on outdated correlations.

Exam trap

Cisco often tests the distinction between concept drift and data leakage, where candidates mistakenly attribute performance degradation to a data contamination issue rather than a shift in the underlying data distribution.

How to eliminate wrong answers

Option B is wrong because overfitting refers to a model that memorizes training data noise and fails to generalize, but the problem here is a change in the underlying data distribution, not excessive complexity. Option C is wrong because underfitting means the model is too simple to capture patterns in the training data, whereas the issue is that the training data itself no longer reflects the current environment. Option D is wrong because data leakage involves the accidental inclusion of future information in the training set, which is not described; the problem is a temporal shift in the data distribution, not a data contamination issue.

472
MCQhard

A developer is fine-tuning a large language model for a legal document summarization task. They notice that during training, the loss decreases rapidly in the first few epochs but then plateaus with high variance. Which hyperparameter adjustment is MOST likely to help stabilize training?

A.Add L1 regularization
B.Decrease the learning rate
C.Increase the batch size
D.Increase the number of epochs
AnswerB

A lower learning rate reduces gradient step sizes, stabilizing training and reducing variance.

Why this answer

A high-variance loss plateau after rapid initial convergence typically indicates that the learning rate is too large, causing the optimizer to overshoot the minima and oscillate. Decreasing the learning rate allows smaller, more stable weight updates, reducing variance and enabling smoother convergence.

Exam trap

CompTIA often tests the misconception that high variance in loss is always solved by increasing batch size or regularization, when in fact the immediate cause is often an overly aggressive learning rate that prevents convergence.

How to eliminate wrong answers

Option A is wrong because L1 regularization adds a penalty on the absolute magnitude of weights to induce sparsity, which does not directly address high variance in the loss curve during fine-tuning. Option C is wrong because increasing the batch size reduces gradient noise and can stabilize training, but the question describes high variance after a plateau, which is more directly tied to learning rate oscillations rather than batch size. Option D is wrong because increasing the number of epochs does not fix the underlying instability; it may even exacerbate overfitting or variance if the learning rate remains too high.

473
MCQeasy

A healthcare provider wants to use AI to predict patient readmission risk. They have structured data (age, diagnosis, lab results) and unstructured clinical notes. Which approach is most appropriate?

A.Convolutional neural network (CNN) on clinical notes
B.Recurrent neural network (RNN) on structured data
C.Logistic regression on structured data only
D.Multimodal model combining structured and text embeddings
AnswerD

A multimodal model can process both structured data and text, leveraging all available information.

Why this answer

Option D is correct because the scenario involves both structured data (age, diagnosis, lab results) and unstructured clinical notes. A multimodal model can process both types by combining embeddings from text (e.g., via a transformer or RNN) with structured features, enabling the model to learn cross-modal patterns that improve readmission risk prediction. This approach leverages the complementary strengths of structured and unstructured data, which is essential for capturing the full clinical picture.

Exam trap

The trap here is that candidates may assume a single model type (like CNN or RNN) is sufficient for all data, overlooking the need to combine structured and unstructured data through a multimodal architecture.

How to eliminate wrong answers

Option A is wrong because a convolutional neural network (CNN) on clinical notes alone ignores the structured data (age, diagnosis, lab results), which are critical for readmission prediction; CNNs are also less effective for sequential text than transformers or RNNs. Option B is wrong because a recurrent neural network (RNN) on structured data is suboptimal—structured data is typically tabular and better handled by tree-based models or dense layers, and RNNs are designed for sequential data like time series or text. Option C is wrong because logistic regression on structured data only discards the valuable unstructured clinical notes, missing key risk factors embedded in free text, and logistic regression cannot capture complex nonlinear interactions in the data.

474
MCQeasy

A data scientist notices that a hiring model systematically scores female candidates lower than male candidates with similar qualifications. The training data was collected from past hiring decisions where the company historically hired more men. Which type of AI bias is most directly demonstrated?

A.Selection bias
B.Algorithmic bias
C.Confirmation bias
D.Historical bias
AnswerD

Historical bias stems from data that mirrors past discriminatory practices.

Why this answer

The correct answer is D, historical bias, because the model's lower scoring of female candidates stems directly from training data that reflects past hiring decisions where the company historically hired more men. This bias is embedded in the data itself, not introduced by the algorithm or data collection method. Historical bias occurs when the training data encodes societal or organizational prejudices from the past, which the model then perpetuates.

Exam trap

Cisco often tests the distinction between historical bias (data-driven) and algorithmic bias (model-driven), and the trap here is that candidates confuse 'algorithmic bias' as the catch-all term, missing that the root cause is the historical data, not the algorithm's logic.

How to eliminate wrong answers

Option A is wrong because selection bias refers to systematic error in how data is sampled or collected (e.g., non-random sampling), not to bias inherited from historical outcomes in the training data. Option B is wrong because algorithmic bias is a broader term that includes any bias introduced by the algorithm's design or optimization process, but here the root cause is the historical data, not the algorithm itself. Option C is wrong because confirmation bias is a human cognitive bias where people favor information that confirms their preexisting beliefs, and it does not apply to a machine learning model's training process.

475
MCQmedium

A machine learning engineer is training a Support Vector Machine (SVM) with an RBF kernel on a dataset with features on different scales (e.g., age 0-100, income 0-1,000,000). The model converges slowly and yields poor accuracy. What should the engineer do first?

A.Standardize the features to have zero mean and unit variance
B.Increase the regularization parameter C to penalize misclassifications more
C.Decrease the gamma parameter to reduce the influence of each data point
D.Switch to a linear kernel to avoid distance calculations
AnswerA

Standardization ensures all features contribute equally to the distance metric.

Why this answer

Standardizing features to zero mean and unit variance is the correct first step because SVMs with RBF kernels are distance-based models. Features on vastly different scales (e.g., age 0-100 vs. income 0-1,000,000) cause the kernel to disproportionately weight larger-scale features, leading to slow convergence and poor accuracy. Standardization ensures each feature contributes equally to the distance calculations, improving both training speed and model performance.

Exam trap

The CompTIA AI+ exam often tests the misconception that hyperparameter tuning (C or gamma) is the primary fix for poor SVM performance, when in reality feature scaling is a prerequisite for distance-based kernels like RBF.

How to eliminate wrong answers

Option B is wrong because increasing the regularization parameter C penalizes misclassifications more heavily, which addresses overfitting or underfitting but does not fix the fundamental issue of feature scale disparity. Option C is wrong because decreasing the gamma parameter reduces the influence of each training point, which affects the decision boundary's smoothness but does not correct the scale imbalance that distorts distance computations. Option D is wrong because switching to a linear kernel avoids the RBF kernel's distance-based calculations but does not resolve the scale problem—linear SVMs also rely on distances and benefit from feature scaling.

476
MCQhard

An AI system is deployed to detect fraudulent transactions. The system flags 5% of transactions as fraudulent, but the actual fraud rate is 0.1%. The business sees many false positives and wants to reduce them without significantly increasing false negatives. Which metric should be prioritized for optimization?

A.Recall
B.F1 score
C.Accuracy
D.Precision
AnswerB

F1 score balances precision and recall, allowing trade-off to reduce false positives while maintaining reasonable recall.

Why this answer

The F1 score balances precision and recall, making it ideal when false positives are costly but false negatives must not increase significantly. Optimizing precision alone would reduce false positives but could increase false negatives, while recall alone would not address the false positive problem. The F1 score ensures both metrics are jointly optimized, aligning with the business requirement.

Exam trap

CompTIA often tests the misconception that precision is the best metric for reducing false positives, but the trap here is that precision alone ignores the impact on false negatives, which the business explicitly wants to avoid increasing.

How to eliminate wrong answers

Option A is wrong because recall focuses on minimizing false negatives, but does not address the false positive problem; optimizing recall alone would likely increase false positives, worsening the business issue. Option C is wrong because accuracy is misleading in highly imbalanced datasets (0.1% fraud rate); a system that never flags any transaction would achieve 99.9% accuracy but fail to detect fraud. Option D is wrong because precision reduces false positives, but optimizing precision alone could increase false negatives (missed fraud), which the business wants to avoid; the F1 score balances both.

477
Multi-Selectmedium

A data science team is building a model to predict customer churn. The dataset includes categorical variables like 'region' and 'subscription_type'. Which three preprocessing steps should be applied to these categorical features? (Select THREE).

Select 3 answers
A.Normalization
B.Label encoding
C.Standard scaling
D.Ordinal encoding
E.One-hot encoding
AnswersB, D, E

Label encoding assigns integers to each category, suitable for ordinal categories.

Why this answer

Label encoding (B) is correct because it converts each unique category in a categorical variable into a unique integer, which is a simple and memory-efficient way to prepare categorical data for machine learning models. Ordinal encoding (D) is correct for categorical variables with a natural order, such as 'subscription_type' if tiers exist (e.g., basic, premium, enterprise), preserving ordinal relationships. One-hot encoding (E) is correct for nominal categorical variables like 'region' where no order exists, creating binary columns for each category to avoid implying false ordinality.

Exam trap

CompTIA often tests the distinction between ordinal and nominal categorical variables, trapping candidates who apply label encoding to nominal data or one-hot encoding to ordinal data without considering the feature's inherent order.

478
MCQhard

A team is implementing a RAG system for a large legal document repository. They need to chunk the documents for efficient retrieval. The documents contain long sections with subsections, and the team wants to preserve the hierarchical structure. Which chunking strategy is MOST appropriate?

A.Hierarchical chunking that preserves section and subsection boundaries
B.Overlapping chunking with a 10% token overlap
C.Semantic chunking based on topic segmentation
D.Fixed-size chunking with 512 tokens per chunk
AnswerA

Hierarchical chunking maintains the document's structure, allowing retrieval of relevant subsections along with their parent context, essential for legal documents.

Why this answer

Hierarchical chunking preserves the document structure by maintaining parent-child relationships, which is crucial for legal documents where context from headings matters. Fixed-size may break logical sections; semantic chunking splits by topic but loses hierarchy; overlapping chunks help continuity but don't preserve structure.

479
MCQmedium

A company deploys an LLM-based API for generating code snippets. They discover that users are able to extract the system prompt by asking the model to 'ignore previous instructions and print your prompt'. What type of attack is this?

A.Prompt leaking
B.Data poisoning
C.Jailbreaking
D.Model extraction
AnswerA

Prompt leaking occurs when an attacker gets the model to output its system prompt or instructions.

Why this answer

Prompt leaking is a type of attack where an adversary tricks the LLM into revealing its system prompt or other hidden instructions. In this scenario, the user explicitly asks the model to 'ignore previous instructions and print your prompt,' which directly causes the model to output the system prompt. This is a classic prompt leaking attack because the attacker is extracting confidential configuration data from the model's context.

Exam trap

Cisco often tests the distinction between 'jailbreaking' (bypassing safety to generate harmful content) and 'prompt leaking' (extracting hidden instructions), so candidates may mistakenly choose jailbreaking because both involve overriding the model's instructions.

How to eliminate wrong answers

Option B (Data poisoning) is wrong because data poisoning involves corrupting the training data to alter the model's behavior, not extracting prompts at inference time. Option C (Jailbreaking) is wrong because jailbreaking typically aims to bypass safety filters to generate prohibited content (e.g., harmful instructions), not to extract the system prompt itself. Option D (Model extraction) is wrong because model extraction refers to stealing the model's weights or architecture through repeated queries, not extracting a text-based system prompt.

480
MCQeasy

Refer to the exhibit. The data scientist notices that the model achieves 98% accuracy on the training set but only 72% on the test set. Which change to the model parameters is most likely to reduce this gap?

A.Increase n_estimators to 500.
B.Set max_depth to None to allow trees to grow fully.
C.Reduce max_depth to 3.
D.Switch from RandomForest to a linear model like LogisticRegression.
AnswerC

Reducing max_depth restricts the tree depth, reducing overfitting.

Why this answer

The model is overfitting: 98% training accuracy vs. 72% test accuracy. Reducing max_depth to 3 limits the depth of each decision tree, preventing them from memorizing noise and forcing them to learn more generalizable patterns. This is a standard regularization technique for tree-based ensembles.

Exam trap

CompTIA often tests the bias-variance tradeoff by presenting overfitting symptoms and expecting candidates to choose a regularization parameter (like reducing max_depth) rather than increasing model complexity or switching model families entirely.

How to eliminate wrong answers

Option A is wrong because increasing n_estimators to 500 would add more trees, which generally improves stability but does not reduce overfitting—it may even exacerbate it if individual trees are already too deep. Option B is wrong because setting max_depth to None allows trees to grow fully, which increases the risk of overfitting by capturing every detail in the training data, widening the accuracy gap. Option D is wrong because switching to a linear model like LogisticRegression is a drastic architectural change that may underfit if the data has non-linear relationships; the goal is to regularize the existing RandomForest, not replace it entirely.

481
MCQhard

An MLOps team uses a CI/CD pipeline to automate model retraining. The pipeline triggers on new labeled data, runs feature engineering, retrains the model, evaluates against a holdout set, and deploys if metrics exceed thresholds. Recently, a retrained model passed validation but caused a 5% accuracy drop in production. Which improvement best prevents this?

A.Implement canary deployment with shadow scoring to compare with current model
B.Require manual approval before deployment
C.Use the entire production dataset for validation instead of a holdout set
D.Increase the amount of training data used in each retraining cycle
AnswerA

Canary deployment allows testing on live traffic with minimal risk.

Why this answer

Canary deployment with shadow scoring allows the new model to serve predictions to a small subset of traffic while comparing its outputs against the current production model in real time, without affecting all users. This catches subtle data drift or concept drift that a static holdout set may miss, preventing the 5% accuracy drop from reaching full production.

Exam trap

A common misconception is that more data or larger validation sets always improve model reliability. However, the trap here is that distribution drift between training/validation and live production is the real cause of accuracy drops, which only online evaluation methods like canary deployment can detect.

How to eliminate wrong answers

Option B is wrong because manual approval adds a human bottleneck and does not detect the underlying data drift or distribution mismatch that caused the accuracy drop; it only gates deployment without technical validation. Option C is wrong because using the entire production dataset for validation would include the same data the model was trained on, leading to data leakage and overoptimistic metrics that mask real-world performance. Option D is wrong because simply increasing training data volume does not address the root cause of distribution shift between the validation holdout set and live production traffic; more data may even amplify bias if the new data is not representative.

482
MCQmedium

A data scientist is building a model to predict whether a loan application will default. The dataset has 10,000 labeled examples with 1,000 defaults. Which metric is MOST appropriate for evaluating this highly imbalanced binary classification?

A.Precision
B.AUC-ROC
C.Recall
D.Accuracy
AnswerB

AUC-ROC evaluates model performance across all thresholds and is insensitive to class imbalance.

Why this answer

AUC-ROC is robust to class imbalance because it measures the trade-off between true positive rate and false positive rate across all thresholds. Accuracy is misleading when classes are imbalanced. Precision and recall focus on one class but are threshold-dependent.

483
Multi-Selecthard

A company is deploying an AI system that falls under the EU AI Act's high-risk category. Which THREE requirements must the company fulfill?

Select 3 answers
A.Ensure human oversight to prevent or minimise risks
B.Obtain explicit consent from all affected individuals
C.Open-source the model's code to the public
D.Create and maintain technical documentation including the system's intended purpose
E.Establish a risk management system throughout the AI system's lifecycle
AnswersA, D, E

Human oversight is mandatory for high-risk AI systems.

Why this answer

The EU AI Act for high-risk systems requires risk management, human oversight, and transparency documentation. Open-sourcing the model is not required; obtaining consent is not a specific requirement for high-risk systems.

484
MCQmedium

A team uses Apache Kafka to stream real-time sensor data for ML inference. They need to process the stream, perform feature engineering, and store results in a data lake. Which tool is best suited for this streaming ML pipeline?

A.Apache Spark with Structured Streaming
B.Apache Airflow
C.TensorFlow Data Validation
D.SageMaker Processing jobs
AnswerA

Spark's structured streaming reliably processes Kafka streams with exactly-once semantics and writes to data lakes.

Why this answer

Apache Spark with Structured Streaming is best suited because it provides a unified, scalable engine for both stream processing and batch processing, enabling real-time feature engineering on Kafka streams and direct writing to a data lake (e.g., Parquet format in Amazon S3). Its micro-batch or continuous processing model integrates natively with Kafka, allowing exactly-once semantics and low-latency transformations for ML inference pipelines.

Exam trap

CompTIA often tests the distinction between stream processing engines (like Spark Structured Streaming) and orchestration or batch tools (like Airflow or SageMaker Processing), trapping candidates who confuse workflow scheduling with real-time data processing.

How to eliminate wrong answers

Option B (Apache Airflow) is wrong because it is a workflow orchestration tool for scheduling and managing DAGs, not a stream processing engine; it cannot perform real-time feature engineering on Kafka streams. Option C (TensorFlow Data Validation) is wrong because it is designed for data validation and schema inference in static datasets or batch pipelines, not for continuous stream processing or feature engineering on live sensor data. Option D (SageMaker Processing jobs) is wrong because it is a batch processing service for data preprocessing and model evaluation on static datasets, lacking native support for streaming ingestion from Kafka or real-time feature computation.

485
MCQmedium

Refer to the exhibit. A data scientist observes the training output. Which issue is most likely?

A.Underfitting
B.Data augmentation failure
C.Overfitting
D.Model compression
AnswerC

Correct; high training accuracy with lower validation accuracy suggests overfitting.

Why this answer

The exhibit shows training loss decreasing while validation loss increases after a certain epoch, which is the classic signature of overfitting. The model is memorizing the training data rather than learning generalizable patterns, leading to poor performance on unseen data.

Exam trap

CompTIA often tests the distinction between overfitting and underfitting by showing a loss curve where training loss is low but validation loss rises, tricking candidates who focus only on the low training loss without checking validation performance.

How to eliminate wrong answers

Option A is wrong because underfitting would show both training and validation loss remaining high and not decreasing, not the divergence seen here. Option B is wrong because data augmentation failure would typically cause both losses to be high or erratic, not a clear divergence with low training loss. Option D is wrong because model compression reduces model size and may affect accuracy, but it does not produce the specific loss divergence pattern of overfitting.

486
MCQmedium

A healthcare AI system uses patient data to predict disease risk. To comply with HIPAA and reduce the risk of re-identification, which technique should be applied to the training data before model development?

A.Pseudonymisation by replacing patient names with random IDs
B.Data augmentation to create synthetic samples
C.Differential privacy with a carefully chosen epsilon
D.Data minimisation by removing all features except age and gender
AnswerC

Differential privacy adds controlled noise to protect individual records, meeting HIPAA's de-identification standards with formal guarantees.

Why this answer

Differential privacy (Option C) is the correct technique because it adds calibrated noise to the training data or model outputs, providing a mathematical guarantee against re-identification even if an attacker has auxiliary information. This directly addresses HIPAA's requirement to protect patient privacy while preserving statistical utility for disease risk prediction.

Exam trap

A common misconception is that pseudonymisation (Option A) is equivalent to de-identification under HIPAA, when in fact it is a reversible process that fails against linkage attacks, making differential privacy the only mathematically rigorous option.

How to eliminate wrong answers

Option A is wrong because pseudonymisation by replacing names with random IDs is a reversible or linkable technique; it does not prevent re-identification when combined with quasi-identifiers (e.g., ZIP code, birth date) and is not considered sufficient for HIPAA de-identification. Option B is wrong because data augmentation creates synthetic samples to improve model generalisation, not to protect privacy; it does not reduce re-identification risk and may even leak information if synthetic data is too similar to real records. Option D is wrong because data minimisation by removing all features except age and gender removes too much clinically relevant information, rendering the model useless for disease risk prediction, and still leaves quasi-identifiers that can be used for re-identification (e.g., age + gender + location).

487
MCQmedium

Based on the exhibit, what is the most likely issue with the model training?

A.Vanishing gradient
B.Learning rate too high
C.Underfitting
D.Overfitting
AnswerD

The diverging validation loss after initial improvement indicates the model is memorizing the training data and failing to generalize.

Why this answer

The exhibit shows training loss decreasing while validation loss increases after a certain point, which is a classic sign of overfitting. The model is memorizing the training data rather than generalizing, leading to poor performance on unseen validation data.

Exam trap

CompTIA often tests the distinction between overfitting and underfitting by showing a diverging validation loss curve, which candidates may misinterpret as a learning rate issue or vanishing gradient.

How to eliminate wrong answers

Option A is wrong because vanishing gradient typically causes training to stall early with both losses high and flat, not a diverging validation loss. Option B is wrong because a learning rate too high would cause both training and validation losses to oscillate or diverge together, not just validation loss increasing. Option C is wrong because underfitting would show both training and validation losses remaining high and plateauing, not a decreasing training loss.

488
MCQhard

A security engineer is conducting threat modeling for an AI system that uses a pre-trained image classifier. Applying STRIDE, which threat category most directly addresses an attacker manipulating the model's behavior by providing carefully crafted inputs that the model was not trained to handle robustly?

A.Repudiation
B.Tampering
C.Information disclosure
D.Spoofing
AnswerB

Tampering covers unauthorized modification of data, such as adversarial perturbations to input data.

Why this answer

Tampering involves unauthorized modification of data or systems. In this context, adversarial examples tamper with the input data to alter the model's behavior. Spoofing is about impersonation, Repudiation is about denying actions, and Information disclosure is about exposing sensitive data.

489
Multi-Selecteasy

Which TWO techniques are commonly used for feature scaling? (Choose two.)

Select 2 answers
A.Standardization
B.One-hot encoding
C.Min-Max scaling
D.Normalization
E.PCA
AnswersA, C

Correct: Centers features to mean 0 and standard deviation 1.

Why this answer

Standardization (A) is correct because it rescales features to have a mean of 0 and a standard deviation of 1, which is essential for algorithms like SVM, PCA, and neural networks that assume normally distributed data. This technique uses the formula (x - μ) / σ, where μ is the mean and σ is the standard deviation, ensuring each feature contributes equally to the model.

Exam trap

This question tests the distinction between 'Normalization' (which can refer to scaling to unit length) and 'Min-Max scaling' (which rescales to a fixed range), leading candidates to incorrectly select Normalization as a feature scaling technique.

490
MCQmedium

A dataset for a binary classification problem has 95% of samples in class "0" and 5% in class "1". The data scientist trains a logistic regression model and achieves 95% accuracy. Which metric should the scientist primarily use to evaluate model performance?

A.Precision, recall, and F1-score.
B.R-squared.
C.Accuracy.
D.Mean squared error.
AnswerA

These metrics evaluate performance on the minority class, crucial for imbalanced data.

Why this answer

In a highly imbalanced dataset (95% class 0, 5% class 1), accuracy is misleading because a model can achieve 95% accuracy by simply predicting the majority class for all samples. Precision, recall, and F1-score provide a more nuanced view of performance on the minority class, which is typically the class of interest in binary classification problems. The F1-score, in particular, balances precision and recall, making it the primary metric for evaluating model effectiveness on imbalanced data.

Exam trap

CompTIA often tests the concept that accuracy is a poor metric for imbalanced datasets, trapping candidates who assume high accuracy always indicates good model performance without considering class distribution.

How to eliminate wrong answers

Option B is wrong because R-squared is a metric for regression models, measuring the proportion of variance in the dependent variable explained by the independent variables, and is not applicable to classification tasks. Option C is wrong because accuracy is not a reliable metric for imbalanced datasets; a model that always predicts the majority class can achieve high accuracy without actually learning meaningful patterns, as seen with the 95% accuracy matching the class distribution. Option D is wrong because mean squared error (MSE) is a loss function for regression problems, used to quantify the average squared difference between predicted and actual continuous values, and is not appropriate for evaluating binary classification outputs.

491
MCQhard

A recommendation system for an e-commerce platform is experiencing a high false positive rate in its anomaly detection module, causing legitimate transactions to be flagged as fraudulent. The team wants to reduce false positives without significantly increasing false negatives. Which action is MOST effective?

A.Decrease the anomaly detection threshold
B.Increase the anomaly detection threshold
C.Use a different anomaly detection algorithm
D.Increase the size of the training dataset
AnswerB

Raising the threshold means only transactions with a very high anomaly score are flagged, reducing false positives.

Why this answer

Adjusting the classification threshold to be more conservative (requiring higher anomaly score) will reduce false positives at the cost of some increase in false negatives, but the goal is to minimize false positives while maintaining acceptable recall.

492
Multi-Selecteasy

A machine learning team is splitting a dataset for a binary classification problem. They want to ensure robust evaluation and avoid data leakage. Which TWO practices should they follow? (Choose 2)

Select 2 answers
A.Normalise the entire dataset before splitting
B.Split into training, validation, and test sets
C.Include validation data in the training set for more data
D.Shuffle the data before splitting
E.Use the same split for all experiments
AnswersB, D

A three-way split allows tuning on validation and final evaluation on test.

Why this answer

Train/validation/test split is standard; cross-validation gives more robust estimates. Shuffling before split prevents ordering bias.

493
MCQmedium

A team is training a convolutional neural network (CNN) for medical image diagnosis. They have a limited dataset of 500 labeled images. Which strategy is most effective to improve model generalization?

A.Increasing network depth
B.Data augmentation
C.Using a larger batch size
D.Reducing the number of filters
AnswerB

Augmentation (e.g., rotation, flip) generates more training examples, improving generalization.

Why this answer

With only 500 labeled medical images, the primary challenge is overfitting due to limited data. Data augmentation (e.g., random rotations, flips, zooms) artificially expands the training set by creating varied but realistic transformations, which forces the CNN to learn invariant features and significantly improves generalization to unseen data.

Exam trap

Cisco often tests the misconception that increasing model complexity (depth or filters) always improves performance, but with limited data, the correct strategy is to use regularization techniques like data augmentation to combat overfitting.

How to eliminate wrong answers

Option A is wrong because increasing network depth adds more parameters, which exacerbates overfitting on a small dataset and requires more data to train effectively. Option C is wrong because using a larger batch size provides a noisier gradient estimate and can lead to sharper minima, often reducing generalization, especially with limited data. Option D is wrong because reducing the number of filters lowers the model's capacity, which may cause underfitting and fail to capture the complex patterns needed for medical image diagnosis.

494
MCQhard

A company deploys an AI system for loan approvals. The EU AI Act classifies this as high-risk. Which human oversight requirement applies?

A.Human-in-command approach
B.Human-in-the-loop (HITL) mechanism
C.Human-on-the-loop oversight
D.Automated decision-making without human review
AnswerB

Article 14 requires human oversight, and HITL ensures that a human can intervene or reverse decisions.

Why this answer

The EU AI Act requires human-in-the-loop (HITL) oversight for high-risk AI systems like loan approval, meaning a human must be able to intervene and override the system's decisions during operation. This ensures that automated decisions can be reviewed and corrected in real-time, preventing fully autonomous outcomes in critical areas such as credit scoring.

Exam trap

Cisco often tests the distinction between 'human-in-the-loop' (direct intervention during operation) and 'human-on-the-loop' (monitoring after the fact), leading candidates to confuse the two for high-risk systems where real-time override is mandatory.

How to eliminate wrong answers

Option A is wrong because 'human-in-command' is not a defined term under the EU AI Act; the correct terminology is human-in-the-loop, human-on-the-loop, or human-in-charge for general oversight roles. Option C is wrong because human-on-the-loop oversight involves monitoring system outputs at a higher level without direct real-time intervention, which is insufficient for high-risk loan approvals where immediate human override must be possible. Option D is wrong because automated decision-making without human review directly violates the EU AI Act's requirement for human oversight in high-risk systems, as it removes any possibility of human intervention or accountability.

495
MCQmedium

An e-commerce company uses a machine learning model to recommend products to users. The model is retrained weekly and deployed to production. For the past three weeks, the model's click-through rate (CTR) has been stable except on Mondays, when it drops by 15%. Analysis reveals that the training data is extracted on Sundays and includes only weekday behavior. On Mondays, user behavior shifts due to weekend browsing patterns not captured in the training data. The team wants to maintain a weekly retraining cadence but fix the Monday performance drop. Which solution best addresses the Monday CTR drop without changing the retraining frequency?

A.Deploy a separate model specifically for Monday predictions
B.Modify the data pipeline to include the full week (including the past weekend) in each retraining
C.Serve the previous week's model on Mondays to use older but stable patterns
D.Change to daily retraining to include weekend data more promptly
AnswerB

Captures weekend behavior without altering frequency.

Why this answer

Option B is correct because it directly addresses the root cause: the training data excludes weekend behavior, causing the model to be blind to Monday patterns. By modifying the data pipeline to include the full week (including the past weekend) in each retraining, the model learns from weekend browsing patterns and can generalize to Monday user behavior without changing the weekly retraining cadence. This ensures the training distribution matches the inference distribution on Mondays, stabilizing CTR.

Exam trap

CompTIA often tests the misconception that changing retraining frequency (Option D) is the only way to incorporate new data, when in fact adjusting the data window within the existing cadence (Option B) is a more efficient and correct solution.

How to eliminate wrong answers

Option A is wrong because deploying a separate model for Monday predictions introduces operational complexity and does not fix the data gap; it merely treats the symptom by creating a specialized model that still lacks weekend data unless separately trained. Option C is wrong because serving the previous week's model on Mondays would use older patterns that also exclude the most recent weekend behavior, and the model would be even more stale, likely worsening the drop. Option D is wrong because changing to daily retraining alters the retraining frequency, which the team explicitly wants to maintain; it also adds unnecessary overhead and does not address the fact that the training data extraction point (Sundays) is the core issue.

496
MCQeasy

A team is building a regression model to predict house prices. Which data transformation is most appropriate if the target variable exhibits right skewness?

A.Principal component analysis (PCA)
B.Standardization (Z-score)
C.One-hot encoding
D.Log transformation
AnswerD

Log transformation reduces right skewness by compressing large values.

Why this answer

Log transformation is the most appropriate technique for right-skewed target variables because it compresses the long tail, making the distribution more symmetric and closer to Gaussian. This stabilizes variance and often improves the performance of regression models that assume normally distributed errors, such as linear regression.

Exam trap

CompTIA often tests the misconception that standardization can fix skewness, but candidates must remember that standardization only rescales the data, not reshape its distribution.

How to eliminate wrong answers

Option A is wrong because Principal Component Analysis (PCA) is a dimensionality reduction technique for features, not a transformation applied to the target variable; it does not address skewness in the target. Option B is wrong because Standardization (Z-score) centers and scales the data but does not change the shape of the distribution, so it cannot correct right skewness. Option C is wrong because One-hot encoding is used to convert categorical variables into numerical format, not to transform a continuous target variable.

497
MCQhard

A multinational corporation deploys an AI recruitment tool that must comply with GDPR's right to explanation. Which practice best ensures the tool meets this requirement?

A.Obtain explicit consent from candidates
B.Implement a system to output the key factors influencing each decision
C.Anonymize all candidate data before processing
D.Always have a human review the AI's recommendations
AnswerB

Correct. Outputting the key factors that influenced each decision provides the transparency required by GDPR's right to explanation (Article 22).

Why this answer

Option B is correct because GDPR's right to explanation (Article 22) requires that data subjects receive meaningful information about the logic involved in automated decisions. Implementing a system that outputs the key factors influencing each decision directly satisfies this requirement. Option A is wrong because explicit consent pertains to data processing permissions, not to post-decision explanations.

Option C is wrong because anonymization addresses data privacy, not the transparency of decision logic. Option D is wrong while human review adds a layer of oversight, it does not inherently provide an explanation of the decision factors.

498
Multi-Selecteasy

Which TWO of the following are common techniques to improve the transparency and interpretability of an AI model?

Select 2 answers
A.Generate SHAP (SHapley Additive exPlanations) values
B.Use differential privacy to add noise to training data
C.Implement a random forest algorithm
D.Use deep neural networks to increase model complexity
E.Apply LIME (Local Interpretable Model-agnostic Explanations)
AnswersA, E

SHAP values explain the contribution of each feature to predictions.

Why this answer

SHAP values are correct because they provide a unified measure of feature importance based on cooperative game theory, specifically Shapley values, which quantify the marginal contribution of each feature to a model's prediction. This makes the model's decision-making process transparent by showing how each input feature influences the output, which is a core technique for interpretability in AI governance.

Exam trap

Cisco often tests the distinction between techniques that improve model transparency (like SHAP and LIME) versus techniques that enhance privacy (like differential privacy) or model performance (like random forests or deep neural networks), leading candidates to confuse privacy-preserving methods with interpretability methods.

499
MCQmedium

A healthcare AI system that diagnoses medical images must provide explanations for its predictions to comply with regulatory requirements. Which technique should the team implement?

A.Reduce the model's accuracy to make it simpler.
B.Only deploy rule-based systems.
C.Apply model interpretability methods such as SHAP or LIME.
D.Use a more complex deep learning model.
AnswerC

These methods provide explanations for individual predictions without sacrificing model accuracy.

Why this answer

Option C is correct because SHAP (SHapley Additive exPlanations) and LIME (Local Interpretable Model-agnostic Explanations) are established model interpretability techniques that provide per-prediction explanations, which are essential for regulatory compliance in healthcare AI. These methods generate feature attribution scores or local surrogate models to explain why a specific diagnosis was made, meeting transparency requirements without sacrificing model performance.

Exam trap

The trap here is that candidates often assume complex models are inherently better for compliance, but the exam tests the understanding that interpretability techniques are required to bridge the gap between high-performance black-box models and regulatory transparency.

How to eliminate wrong answers

Option A is wrong because reducing model accuracy to make it simpler would degrade diagnostic performance and still not guarantee interpretability; a simpler model is not inherently explainable in a regulatory sense. Option B is wrong because only deploying rule-based systems is overly restrictive and impractical for complex medical image analysis, where deep learning models often achieve superior accuracy; rule-based systems may also lack the flexibility to handle edge cases. Option D is wrong because using a more complex deep learning model typically reduces interpretability, making it harder to provide the required explanations, and does not address regulatory compliance.

500
MCQeasy

A data scientist is preparing a dataset for a classification model. The dataset has missing values in several features and features with very different scales. Which two data preparation steps should be applied?

A.Cleaning and normalization
B.Outlier removal and binning
C.Feature selection and dimensionality reduction
D.Data augmentation and one-hot encoding
AnswerA

Correct: cleaning addresses missing values, normalization addresses scale differences.

Why this answer

Cleaning handles missing values (e.g., imputation), and normalization scales features to a similar range, which is important for many ML algorithms.

501
Multi-Selecthard

A bank wants to ensure its credit scoring model is fair across demographic groups. The model currently uses features like zip code, income, and credit history. To mitigate potential bias, which TWO actions should the data science team prioritize?

Select 2 answers
A.Analyze the model for disparate impact using statistical tests
B.Review features like zip code for potential proxy discrimination
C.Remove all features that could be correlated with protected attributes
D.Implement a fairness metric like demographic parity or equalized odds
E.Apply differential privacy to the training data
AnswersA, B

Disparate impact analysis helps identify whether the model adversely affects a protected group.

Why this answer

Option A is correct because analyzing the model for disparate impact using statistical tests (e.g., the 80% rule or chi-square test) directly measures whether the model produces systematically different outcomes for protected groups. This is a foundational step in fairness auditing, as it quantifies bias before any mitigation is applied, aligning with regulatory expectations like the Equal Credit Opportunity Act (ECOA).

Exam trap

CompTIA AI+ emphasizes that bias detection (statistical tests, proxy review) must come before mitigation. Many candidates incorrectly select mitigation actions like demographic parity or data removal as a first step, but the exam stresses that bias must first be measured and understood.

502
MCQmedium

A company wants to build a code generation tool that helps developers write Python functions. The tool must generate syntactically correct code. Which prompt engineering technique is MOST effective?

A.Chain-of-thought prompting with step-by-step reasoning
B.System prompt instructing the model to output JSON
C.Instruction fine-tuning on a large Python corpus
D.Few-shot prompting with examples of valid Python functions
AnswerD

Few-shot examples demonstrate the expected syntax and structure, guiding the LLM to produce correct Python code.

Why this answer

Few-shot examples showing valid Python function syntax help the model understand the expected output format and generate correct code.

503
Multi-Selecthard

Which three techniques are commonly used to mitigate overfitting in neural networks? (Choose three.)

Select 3 answers
A.Adding L2 regularization
B.Increasing training data
C.Dropout
D.Reducing number of layers
E.Early stopping
AnswersA, C, E

L2 regularization adds a penalty on large weights, discouraging overfitting by constraining the model complexity.

Why this answer

Adding L2 regularization (also known as weight decay) penalizes large weights by adding a term proportional to the squared magnitude of the weights to the loss function. This forces the network to keep weights small, reducing the model's sensitivity to noise in the training data and preventing it from fitting spurious patterns, which is a direct and effective method to combat overfitting.

Exam trap

CompTIA often tests the distinction between data-level strategies (like increasing training data) and algorithmic regularization techniques (like L2, dropout, early stopping), leading candidates to mistakenly select 'increasing training data' as a technique when the question specifically asks for techniques commonly used within the neural network training process.

504
MCQmedium

A data science team is building a model to detect fraudulent transactions. They have a dataset of 1 million normal transactions and 1,000 fraudulent ones. What is the MOST effective data preparation step to handle this imbalance?

A.Delete all normal transactions until the dataset is balanced
B.Duplicate the fraudulent transactions 1,000 times
C.Apply SMOTE to generate synthetic fraudulent transactions and randomly undersample normal transactions
D.Train the model on the original dataset; class imbalance does not affect model performance
AnswerC

SMOTE creates synthetic fraud samples, and undersampling reduces the majority class, creating a more balanced dataset.

Why this answer

Combining oversampling of the minority class (e.g., SMOTE) with undersampling of the majority class is a common and effective approach to balance the dataset.

505
Multi-Selectmedium

A team is training a deep learning model for image classification. They observe that training accuracy is high but validation accuracy is low, indicating overfitting. Which TWO techniques should they apply to reduce overfitting? (Select TWO)

Select 2 answers
A.Use L2 regularization
B.Increase learning rate
C.Add dropout layers
D.Increase the number of layers
E.Reduce training data size
AnswersA, C

L2 regularization penalizes large weights, encouraging simpler models.

Why this answer

L2 regularization (also known as weight decay) adds a penalty proportional to the square of the magnitude of the weights to the loss function. This discourages the model from learning overly complex patterns that fit the training data noise, effectively reducing overfitting by keeping weights small and the decision boundary simpler.

Exam trap

CompTIA AI often tests the misconception that increasing model complexity (more layers or data reduction) helps generalization, when in fact these actions typically worsen overfitting.

506
MCQmedium

A company is deploying a computer vision model to smartphones for offline object detection. The model was trained in PyTorch. Which format should they use for deployment on iOS devices?

A.TorchScript
B.ONNX
C.Core ML
D.TensorFlow Lite
AnswerC

Core ML is Apple's native format for iOS, providing optimized inference.

Why this answer

Core ML is Apple's framework for on-device machine learning on iOS, and PyTorch models can be converted to Core ML format.

507
MCQmedium

A security team discovers that an AI-based anomaly detection system frequently misclassifies benign network traffic as malicious when the source IP is from a specific geographic region. Which type of AI vulnerability is most likely being exploited?

A.Data poisoning
B.Model inversion
C.Adversarial evasion
D.Membership inference
AnswerC

Adversarial evasion manipulates input features to cause misclassification. The regional bias suggests crafted inputs bypassing detection.

Why this answer

The scenario describes an AI-based anomaly detection system that misclassifies benign traffic from a specific geographic region as malicious. This is a classic example of an adversarial evasion attack, where an attacker crafts inputs (in this case, network traffic) that appear benign to human analysts but cause the AI model to misclassify them. The geographic bias suggests the attacker is exploiting the model's learned decision boundary, likely by manipulating features such as source IP or packet timing to evade detection.

Exam trap

Cisco often tests the distinction between data poisoning (training-time attack) and adversarial evasion (inference-time attack), and the trap here is that candidates confuse the geographic bias with a poisoned training set rather than recognizing it as an evasion technique exploiting the model's learned regional patterns.

How to eliminate wrong answers

Option A is wrong because data poisoning involves injecting malicious data into the training set to corrupt the model's learning, not causing misclassification of benign traffic at inference time. Option B is wrong because model inversion attacks aim to reconstruct private training data from the model's outputs, not to cause misclassification of specific inputs. Option D is wrong because membership inference attacks determine whether a specific data point was used in training, not to cause the model to misclassify benign traffic as malicious.

508
Multi-Selecteasy

A data scientist wants to develop a computer vision model using transfer learning. They need a framework that provides pre-trained models and easy-to-use APIs for data augmentation and training. Which TWO frameworks are best suited for this task?

Select 2 answers
A.Hugging Face Transformers
B.PyTorch
C.scikit-learn
D.TensorFlow
E.Keras
AnswersB, D

PyTorch provides torchvision with pre-trained models and torchvision.transforms for data augmentation, making it ideal for transfer learning in computer vision.

Why this answer

PyTorch (option B) is correct because it offers a rich ecosystem of pre-trained models via `torchvision.models`, along with built-in data augmentation transforms in `torchvision.transforms` and a flexible training loop that is ideal for transfer learning. Its dynamic computation graph makes it easy to modify model architectures for fine-tuning, which is a core requirement for the task.

Exam trap

Candidates often select Hugging Face Transformers because it provides pre-trained models, but it is primarily designed for NLP tasks, not computer vision. Similarly, Keras is a high-level API that runs on top of TensorFlow, so it is not considered a standalone framework for this purpose.

509
MCQmedium

A social media platform uses an AI system to moderate content. The system incorrectly flags legitimate posts as hate speech, disproportionately affecting minority groups. Which type of bias is likely present?

A.Algorithmic bias
B.Historical bias
C.Selection bias
D.Confirmation bias
AnswerA

The model's algorithm or training process causes systematic errors against certain groups.

Why this answer

The AI system's output (incorrectly flagging legitimate posts as hate speech) is a direct result of the model's design, training data, or deployment choices, which is the definition of algorithmic bias. This bias disproportionately affects minority groups because the algorithm's decision-making process systematically produces unfair outcomes for those groups, even if the training data itself was not historically biased.

Exam trap

Cisco often tests the distinction between 'algorithmic bias' (bias introduced by the model's design or deployment) and 'historical bias' (bias present in the training data), so candidates mistakenly choose historical bias when the question describes a system that actively produces unfair outcomes due to its own logic.

How to eliminate wrong answers

Option B (Historical bias) is wrong because historical bias refers to pre-existing societal prejudices reflected in the training data, not the algorithm's own flawed decision-making process; the question states the system 'incorrectly flags' posts, indicating the bias is in the algorithm's logic or thresholds, not just the data. Option C (Selection bias) is wrong because selection bias occurs when the training data is not representative of the real-world population (e.g., overrepresenting certain groups), but the problem here is the algorithm's misclassification of content, not a sampling issue. Option D (Confirmation bias) is wrong because confirmation bias is a human cognitive bias where people favor information that confirms their preexisting beliefs; it does not apply to an AI system's content moderation decisions.

510
MCQhard

An organization deploys a machine learning model for credit scoring. An attacker submits carefully crafted loan applications that are slightly outside normal ranges but cause the model to approve high-risk loans. What type of attack is this?

A.Model extraction
B.Prompt injection
C.Adversarial example
D.Data poisoning
AnswerC

Adversarial examples are crafted to fool a model during inference by small perturbations.

Why this answer

This is an adversarial example attack, where the attacker crafts inputs with small, carefully chosen perturbations that cause the ML model to misclassify them. In credit scoring, submitting loan applications with values slightly outside normal ranges exploits the model's decision boundary to approve high-risk loans, a classic evasion technique.

Exam trap

CompTIA often tests the distinction between data poisoning (training-time attack) and adversarial examples (inference-time attack), so candidates mistakenly choose data poisoning when they see 'crafted inputs' without recognizing the attack occurs after deployment.

How to eliminate wrong answers

Option A is wrong because model extraction involves querying a model to steal its parameters or architecture, not manipulating inputs to cause misclassification. Option B is wrong because prompt injection targets large language models by injecting malicious instructions into prompts, not numerical input manipulation for tabular ML models. Option D is wrong because data poisons the training data to corrupt the model during training, whereas this attack occurs at inference time on a deployed model.

511
MCQmedium

An organization is adopting a third-party pre-trained language model for internal use. To assess supply chain security, which document should they request to understand the components and dependencies of the model?

A.OWASP LLM Top 10
B.Model card
C.Data flow diagram
D.Software Bill of Materials (SBOM)
AnswerD

An SBOM lists all third-party components, libraries, and dependencies, enabling supply chain risk assessment.

Why this answer

A Software Bill of Materials (SBOM) is the correct document for assessing supply chain security because it provides a detailed, machine-readable inventory of all components, libraries, and dependencies used to build the model. This allows the organization to identify known vulnerabilities, licensing risks, and transitive dependencies, which is essential for evaluating the security posture of a third-party pre-trained model.

Exam trap

Cisco often tests the distinction between a model card (which describes model behavior) and an SBOM (which describes software components), leading candidates to mistakenly choose the model card for supply chain security questions.

How to eliminate wrong answers

Option A is wrong because the OWASP LLM Top 10 is a list of common vulnerabilities and risks for Large Language Model applications, not a document that enumerates the specific components and dependencies of a given model. Option B is wrong because a model card documents the model's intended use, performance, and limitations, but it does not provide a detailed inventory of software components or dependencies needed for supply chain security assessment. Option C is wrong because a data flow diagram illustrates how data moves through a system, but it does not list the software libraries, packages, or third-party components that constitute the model's supply chain.

512
Multi-Selectmedium

A data scientist is building a RAG (Retrieval-Augmented Generation) system. They need to store document embeddings and retrieve relevant chunks efficiently. Which TWO technologies are most appropriate for this task? (Select TWO.)

Select 2 answers
A.A vector database such as Pinecone or Weaviate
B.An embedding model from Hugging Face Transformers
C.A relational database with BLOB storage
D.A GPU cluster for model serving
E.A data warehouse like Snowflake or BigQuery
AnswersA, B

Vector databases are optimized for storing and querying embeddings with approximate nearest neighbor search.

Why this answer

A vector database such as Pinecone or Weaviate is specifically designed to store and index high-dimensional vector embeddings, enabling efficient approximate nearest neighbor (ANN) search. This is essential for RAG systems to quickly retrieve the most semantically relevant document chunks based on the query embedding.

Exam trap

CompTIA often tests the distinction between the component that generates embeddings (the model) and the component that stores/retrieves them (the vector database), leading candidates to mistakenly select only one or to confuse a data warehouse with a vector store.

513
MCQeasy

A startup has developed a natural language processing model for sentiment analysis. Their CI/CD pipeline includes a step that runs unit tests on the model's output format and a validation step that checks accuracy on a static test dataset. Recently, the pipeline often fails during the validation step, but the failures are inconsistent—sometimes the same model version passes, sometimes fails. The team suspects the test dataset is small and randomly sampled. They need a reliable validation process to deploy models with confidence. Which approach should the team implement?

A.Replace the static test set with k-fold cross-validation in each pipeline run
B.Increase the accuracy threshold to 95% so only very good models pass
C.Remove the validation step and rely on unit tests only
D.Fix the test dataset to be larger and more representative, and use a statistical test to compare against baseline
AnswerD

A fixed dataset and statistical test provide consistent and objective validation.

Why this answer

Option D is correct because the core issue is that the static test dataset is too small and randomly sampled, leading to inconsistent validation results. By fixing the dataset to be larger and more representative, and using a statistical test (e.g., a paired t-test or McNemar's test) to compare the model's accuracy against a baseline, the team can reliably determine if performance changes are statistically significant, eliminating the randomness that causes pipeline failures to be inconsistent.

Exam trap

CompTIA often tests the misconception that increasing the accuracy threshold or using cross-validation alone can fix validation instability, when the real solution is to address the root cause of small, non-representative test data with statistical rigor.

How to eliminate wrong answers

Option A is wrong because k-fold cross-validation is computationally expensive and time-consuming for a CI/CD pipeline, and it does not directly address the root cause of a small, randomly sampled test set; it would still suffer from variance if the dataset is small. Option B is wrong because simply raising the accuracy threshold to 95% does not fix the underlying inconsistency from a small test set; it may cause even more frequent failures due to random sampling noise, and it does not provide a statistical basis for decision-making. Option C is wrong because removing the validation step entirely would allow models with poor accuracy to be deployed, undermining the goal of deploying with confidence; unit tests alone cannot assess model performance.

514
Multi-Selectmedium

A team is developing a natural language processing model to classify customer feedback. The dataset contains text in multiple languages. Which THREE preprocessing steps are essential to ensure the model performs well across all languages?

Select 3 answers
A.One-hot encoding
B.Lowercasing
C.Tokenization
D.Stemming
E.Removing stop words
AnswersB, C, E

Lowercasing reduces vocabulary size and helps generalize across different cases.

Why this answer

Lowercasing is essential because it normalizes text across languages by converting all characters to the same case, reducing vocabulary size and ensuring that words like 'Good' and 'good' are treated identically. This prevents the model from learning separate representations for case variations, which is critical for multilingual datasets where case usage may differ (e.g., German capitalizes nouns). Without lowercasing, the model's performance degrades due to sparsity and increased feature space.

Exam trap

CompTIA often tests the distinction between preprocessing steps (like lowercasing, tokenization, stop word removal) and feature engineering techniques (like one-hot encoding), leading candidates to mistakenly include one-hot encoding as a preprocessing step when it is actually a vectorization method applied after preprocessing.

515
MCQeasy

A data scientist trains a regression model and notices the training loss is low but validation loss is high. Which technique should be applied FIRST to address this issue?

A.Increase the learning rate.
B.Add more layers to the neural network.
C.Increase the size of the training dataset.
D.Apply L1 or L2 regularization to the model.
AnswerD

Regularization penalizes large weights, reducing overfitting.

Why this answer

The scenario describes overfitting, where the model memorizes the training data but fails to generalize to unseen data. Applying L1 or L2 regularization (Option D) is the correct first step because it adds a penalty to the loss function for large weights, discouraging complexity and reducing overfitting without requiring additional data or architectural changes.

Exam trap

CompTIA often tests the distinction between overfitting and underfitting, and the trap here is that candidates may incorrectly choose to increase dataset size (Option C) as the first action, when regularization is the more immediate and practical first step to address overfitting without requiring new data collection.

How to eliminate wrong answers

Option A is wrong because increasing the learning rate would make training more unstable and could cause the loss to diverge, worsening both training and validation performance. Option B is wrong because adding more layers increases model capacity, which exacerbates overfitting when the training loss is already low and validation loss is high. Option C is wrong because increasing the size of the training dataset can help reduce overfitting, but it is not the first technique to apply; regularization is a simpler, more immediate fix that does not require collecting new data.

516
Multi-Selecteasy

A company wants to build a system that can generate new product images for an online catalog. Which TWO generative AI approaches are most suitable?

Select 2 answers
A.Diffusion models
B.Variational autoencoders (VAEs)
C.Generative Adversarial Networks (GANs)
D.BERT-based model
E.GPT-style language model
AnswersA, C

Diffusion models like DALL-E and Stable Diffusion produce high-quality images from noise.

Why this answer

Generative Adversarial Networks (GANs) are widely used for image generation, and diffusion models (like Stable Diffusion) have achieved state-of-the-art results in image synthesis. Variational autoencoders (VAEs) can generate images but often produce blurrier outputs. GPT is for text, and BERT is for understanding.

517
MCQmedium

A healthcare startup deploys an AI model to predict patient readmission rates. An internal audit reveals that the model consistently underestimates readmission risk for non-native English speakers. According to AI ethics principles, what is the most appropriate course of action?

A.Add a confidence score disclaimer to model outputs
B.Reduce the sample size of non-native English speakers to balance the dataset
C.Continue using the model as is, since overall accuracy is acceptable
D.Retrain the model with a more representative dataset that includes diverse language backgrounds
AnswerD

Retraining with balanced data addresses the root cause of bias.

Why this answer

Option D is correct because it directly addresses the root cause of the bias: the training data lacks sufficient representation from non-native English speakers, leading to systematic underestimation of readmission risk for that group. Retraining with a more representative dataset aligns with the AI ethics principle of fairness by ensuring the model learns patterns across all demographic groups equally, rather than masking the issue with disclaimers or manipulating sample sizes.

Exam trap

Cisco often tests the misconception that adding a disclaimer or adjusting sample sizes post-hoc is sufficient to address bias, when in fact the ethical requirement is to fix the data or model at the training stage to ensure fairness.

How to eliminate wrong answers

Option A is wrong because adding a confidence score disclaimer does not fix the underlying algorithmic bias; it merely informs users of potential inaccuracy without correcting the model's systematic error. Option B is wrong because reducing the sample size of non-native English speakers would exacerbate the bias by further underrepresenting that group, violating the ethical principle of fairness and likely increasing model variance. Option C is wrong because continuing to use a model with known demographic bias, even if overall accuracy is acceptable, violates the AI ethics principle of non-maleficence and could lead to harmful disparities in patient care.

518
MCQeasy

Which OWASP LLM Top 10 category describes the risk when an LLM's output is not validated and leads to server-side request forgery or remote code execution?

A.Model denial of service
B.Sensitive information disclosure
C.Prompt injection
D.Insecure output handling
AnswerD

This is the correct OWASP category for risks from unvalidated LLM outputs.

Why this answer

Insecure output handling (D) is correct because it directly addresses the risk when an LLM's output is not validated or sanitized before being passed to downstream systems. This can lead to server-side request forgery (SSRF) if the output contains URLs that are fetched by the backend, or remote code execution (RCE) if the output is interpreted as code or commands. The OWASP LLM Top 10 defines this category as failing to properly handle model outputs, which can enable injection attacks beyond the LLM itself.

Exam trap

CompTIA often tests the distinction between input-side attacks (Prompt Injection) and output-side risks (Insecure Output Handling), so candidates may confuse the two because both involve injection-like behavior, but the key is whether the vulnerability originates from the input to the LLM or from the LLM's output to downstream systems.

How to eliminate wrong answers

Option A is wrong because Model Denial of Service refers to attacks that exhaust LLM resources (e.g., via computationally expensive inputs or high request volume), not to output validation failures leading to SSRF or RCE. Option B is wrong because Sensitive Information Disclosure involves the LLM inadvertently leaking confidential data from its training set or context, not the exploitation of unvalidated outputs to execute server-side attacks. Option C is wrong because Prompt Injection is an input-side attack where malicious prompts manipulate the LLM's behavior, whereas the question describes a risk arising from unvalidated outputs, which is a distinct category.

519
MCQmedium

A healthcare AI system uses patient data to predict disease risk. To comply with privacy regulations, the organization wants to ensure that the model cannot reveal whether a specific patient's data was used in training. Which technique should they implement?

A.Differential privacy
B.Homomorphic encryption
C.Federated learning
D.Model validation
AnswerA

Differential privacy ensures that the inclusion or exclusion of any single record has a limited effect on the model, protecting against membership inference.

Why this answer

Differential privacy adds noise to the training process, making it difficult to determine if any individual was in the training set. This directly addresses membership inference attacks.

520
MCQeasy

An organization wants to assess the security of its custom LLM application before production release. Which practice involves simulating attacks to identify vulnerabilities?

A.Blue teaming
B.Model validation
C.Data sanitization
D.Red teaming
AnswerD

Red teaming is the practice of simulating attacks to test defenses.

Why this answer

Red teaming (Option D) is the correct practice for simulating attacks to identify vulnerabilities in a custom LLM application. This involves ethical hackers or security experts actively probing the system with adversarial inputs, such as prompt injection, jailbreaking, or data poisoning attempts, to uncover weaknesses before production release. It directly tests the application's resilience against real-world attack vectors, aligning with the AI Security domain's focus on proactive threat assessment.

Exam trap

CompTIA often tests the distinction between red teaming (offensive simulation) and blue teaming (defensive monitoring), where candidates mistakenly choose blue teaming because they associate 'security assessment' with defensive measures rather than active attack simulation.

How to eliminate wrong answers

Option A is wrong because blue teaming refers to the defensive security team that monitors, detects, and responds to attacks, not simulates them; it is the counterpart to red teaming but does not involve offensive simulation. Option B is wrong because model validation focuses on verifying the LLM's accuracy, performance, and fairness using metrics like perplexity or F1 score, not on security testing through simulated attacks. Option C is wrong because data sanitization is a preprocessing step to clean or filter training data to remove sensitive or malicious content, such as personally identifiable information (PII) or adversarial examples, but it does not involve simulating attacks to identify vulnerabilities in the deployed application.

521
MCQmedium

A team is deploying a sentiment analysis model for social media posts. The model currently performs well on English text but poorly on code-switched text (e.g., Spanglish). Which approach is MOST effective for improving performance on code-switched data without starting from scratch?

A.Use a larger base model without additional training
B.Apply data augmentation by translating all code-switched posts to English
C.Train a new model from scratch on a mix of English and code-switched data
D.Fine-tune the existing model on a corpus of code-switched text
AnswerD

Fine-tuning leverages pre-trained knowledge and adapts to the target domain with less data and compute.

Why this answer

Fine-tuning the existing model on a corpus of code-switched text adapts the model to the new language pattern efficiently.

522
MCQmedium

An AI operations team notices that the accuracy of a deployed fraud detection model has been declining over the past month. Which action should the team take to address this issue proactively?

A.Retrain the model with the most recent data immediately.
B.Manually update the model weights weekly.
C.Replace the model with a rule-based system.
D.Set up automated retraining pipeline triggered by performance degradation thresholds.
AnswerD

This allows continuous monitoring and automated response to drift, keeping the model accurate.

Why this answer

Option D is correct because it establishes an automated retraining pipeline triggered by performance degradation thresholds, which aligns with MLOps best practices for maintaining model accuracy in production. This proactive approach ensures the model is retrained when its performance drops below a predefined metric (e.g., AUC or F1 score), without requiring manual intervention. It addresses concept drift, which is a common cause of declining accuracy in deployed fraud detection models.

Exam trap

CompTIA often tests the misconception that retraining with the most recent data immediately is the best proactive action, when in fact automated threshold-based retraining is the correct MLOps practice to avoid overfitting and ensure controlled updates.

How to eliminate wrong answers

Option A is wrong because retraining with the most recent data immediately may introduce data leakage or overfit to recent noise, and it does not address the root cause of performance degradation (e.g., concept drift) in a controlled manner. Option B is wrong because manually updating model weights weekly is not a scalable or reliable practice; it introduces human error and does not leverage automated monitoring or drift detection. Option C is wrong because replacing a machine learning model with a rule-based system would likely reduce the model's ability to detect complex fraud patterns, and it ignores the potential to retrain or update the existing model.

523
MCQeasy

A developer wants to integrate an AI-powered text summarization API into their application. They need to authenticate securely and manage usage limits. What is the standard mechanism for authenticating with cloud-based AI services?

A.Provide a username and password in the request body
B.Embed the API key in the URL query string
C.Use a digital certificate for each request
D.Include an API key in the HTTP request header
AnswerD

API keys are the standard authentication method for cloud AI services, sent in the header (e.g., 'Authorization: Bearer <key>').

Why this answer

Option D is correct because cloud-based AI services, including text summarization APIs, standardize authentication via API keys passed in the HTTP header (e.g., `Authorization: Bearer <key>` or `x-api-key: <key>`). This method keeps credentials out of URLs and request bodies, preventing exposure in logs or caches, and aligns with RESTful API best practices and OWASP guidelines for secure API access.

Exam trap

CompTIA often tests the misconception that embedding credentials in a URL or request body is acceptable for simplicity, but the trap here is that API keys must never appear in URLs or bodies due to security risks like exposure in server logs and referrer headers, making the HTTP header the only standard and secure option.

How to eliminate wrong answers

Option A is wrong because sending a username and password in the request body violates security best practices—credentials would be exposed in plaintext in logs, monitoring tools, and intermediate proxies, and it does not support stateless, token-based authentication used by modern AI APIs. Option B is wrong because embedding an API key in the URL query string exposes the key in server logs, browser history, and referrer headers, making it vulnerable to interception and violating RFC 3986 recommendations against sensitive data in URIs. Option C is wrong because digital certificates (e.g., mTLS) are typically used for machine-to-machine authentication in high-security enterprise environments, not as the standard mechanism for cloud AI services, which rely on simpler API key or OAuth 2.0 token flows for scalability and ease of integration.

524
MCQmedium

A machine learning engineer is building a spam filter. The dataset contains 10,000 emails, of which 1,000 are spam. The engineer decides to use a Random Forest classifier. Which preprocessing step is most critical to ensure the model generalizes well to new, unseen emails?

A.Apply Principal Component Analysis (PCA) to reduce dimensionality
B.Normalize the numerical features to have zero mean and unit variance
C.Split the data into training and testing sets before any other preprocessing
D.Encode all features using one-hot encoding
AnswerC

Splitting first prevents data leakage and ensures realistic evaluation.

Why this answer

Option C is correct because splitting the data into training and testing sets before any other preprocessing prevents data leakage. If preprocessing like normalization or PCA is applied to the entire dataset first, the test set information influences the training process, leading to overly optimistic performance estimates and poor generalization to new, unseen emails.

Exam trap

CompTIA often tests the concept of data leakage by presenting preprocessing steps that seem harmless but actually incorporate test set information, tricking candidates into thinking scaling or dimensionality reduction is always necessary for tree-based models.

How to eliminate wrong answers

Option A is wrong because PCA is an unsupervised dimensionality reduction technique that, if applied before splitting, would leak information from the test set into the training set, and Random Forest is robust to high-dimensional sparse data, making PCA unnecessary for generalization. Option B is wrong because Random Forest is a tree-based ensemble method that is invariant to monotonic transformations and does not require feature scaling; normalizing before splitting would also risk data leakage if done on the full dataset. Option D is wrong because one-hot encoding is only relevant for categorical features, and applying it before splitting could introduce data leakage if the encoding uses levels present only in the test set; moreover, not all features in an email dataset are categorical, and Random Forest can handle label encoding without one-hot encoding.

525
Multi-Selecteasy

A data scientist is training a customer churn prediction model using sensitive customer data. To comply with data privacy regulations, they want to minimize the risk of membership inference attacks. Which TWO techniques should they consider?

Select 2 answers
A.Use k-fold cross-validation to improve model accuracy
B.Deploy the model as a black-box API with no confidence scores
C.Use techniques to reduce overfitting, such as regularization or simpler models
D.Apply differential privacy during training
E.Increase training data size through data augmentation
AnswersC, D

Overfitted models are more susceptible to membership inference because they memorize training examples; reducing overfitting helps generalize and lowers inference risk.

Why this answer

Differential privacy and reducing model complexity (e.g., limiting overfitting) are effective against membership inference. Data augmentation and cross-validation do not directly reduce inference risk. Using a black-box API is about deployment, not training.

Page 6

Page 7 of 14

Page 8