• Home
  • Articles
  • [Jul 08, 2023] Powerful CAS-004 PDF Dumps for CAS-004 Questions [Q61-Q80]

[Jul 08, 2023] Powerful CAS-004 PDF Dumps for CAS-004 Questions [Q61-Q80]

Share

[Jul 08, 2023] Powerful CAS-004 PDF Dumps for CAS-004 Questions

Authentic CAS-004 Dumps - Free PDF Questions to Pass


The CASP+ exam covers a range of advanced cybersecurity topics, including enterprise security architecture, risk management, incident response, research and collaboration, and more. It also includes performance-based questions and simulations to test the practical application of cybersecurity skills. With the CASP+ certification, IT professionals can demonstrate their expertise in managing complex cybersecurity environments and their ability to make critical decisions in high-pressure situations. This certification is ideal for experienced cybersecurity professionals looking to take their careers to the next level and become recognized leaders in the field.


Achieving the CompTIA CASP+ certification can lead to a variety of career opportunities, including positions such as security engineer, security architect, security consultant, and cybersecurity manager. The certification also demonstrates to employers and clients that the candidate has the necessary skills and knowledge to implement effective security solutions and manage complex security environments. Overall, the CompTIA CASP+ certification is a valuable asset for security professionals looking to advance their careers and improve their knowledge and skills in the field of cybersecurity.

 

NEW QUESTION # 61
A company processes data subject to NDAs with partners that define the processing and storage constraints for the covered dat a. The agreements currently do not permit moving the covered data to the cloud, and the company would like to renegotiate the terms of the agreements.
Which of the following would MOST likely help the company gain consensus to move the data to the cloud?

  • A. Designing data protection schemes to mitigate the risk of loss due to multitenancy
  • B. Purchasing managed FIM services to alert on detected modifications to covered data
  • C. Emulating OS and hardware architectures to blur operations from CSP view
  • D. Implementing redundant stores and services across diverse CSPs for high availability

Answer: A


NEW QUESTION # 62
A systems administrator is preparing to run a vulnerability scan on a set of information systems in the organization. The systems administrator wants to ensure that the targeted systems produce accurate information especially regarding configuration settings.
Which of the following scan types will provide the systems administrator with the MOST accurate information?

  • A. A passive, non-credentialed scan
  • B. An active, non-credentialed scan
  • C. An active, credentialed scan
  • D. A passive, credentialed scan

Answer: C


NEW QUESTION # 63
An organization's existing infrastructure includes site-to-site VPNs between datacenters. In the past year, a sophisticated attacker exploited a zero-day vulnerability on the VPN concentrator. Consequently, the Chief Information Security Officer (CISO) is making infrastructure changes to mitigate the risk of service loss should another zero-day exploit be used against the VPN solution.
Which of the following designs would be BEST for the CISO to use?

  • A. Transitioning to a container-based architecture for site-based services
  • B. Adding a second redundant layer of alternate vendor VPN concentrators
  • C. Using Base64 encoding within the existing site-to-site VPN connections
  • D. Implementing IDS services with each VPN concentrator
  • E. Distributing security resources across VPN sites

Answer: B

Explanation:
Explanation
If on VPN concentrator goes down due to a zero day threat, having a redundant VPN concentrator of a different vendor should keep you going.


NEW QUESTION # 64
An application developer is including third-party background security fixes in an application. The fixes seem to resolve a currently identified security issue. However, when the application is released to the public, report come In that a previously vulnerability has returned. Which of the following should the developer integrate into the process to BEST prevent this type of behavior?

  • A. Dynamic analysis
  • B. Peer review
  • C. User acceptance
  • D. Regression testing

Answer: B


NEW QUESTION # 65
Device event logs sources from MDM software as follows:

Which of the following security concerns and response actions would BEST address the risks posed by the device in the logs?

  • A. Malicious installation of an application; change the MDM configuration to remove application ID 1220.
  • B. Impossible travel; disable the device's account and access while investigating.
  • C. Falsified status reporting; remotely wipe the device.
  • D. Resource leak; recover the device for analysis and clean up the local storage.

Answer: A


NEW QUESTION # 66
An organization is referencing NIST best practices for BCP creation while reviewing current internal organizational processes for mission-essential items.
Which of the following phases establishes the identification and prioritization of critical systems and functions?

  • A. Develop an exposure factor matrix.
  • B. Perform a cost-benefit analysis.
  • C. Review a recent gap analysis.
  • D. Conduct a business impact analysis.

Answer: D


NEW QUESTION # 67
A security analyst is investigating a possible buffer overflow attack. The following output was found on a user's workstation:
graphic.linux_randomization.prg
Which of the following technologies would mitigate the manipulation of memory segments?

  • A. NX bit
  • B. HSM
  • C. ASLR
  • D. DEP

Answer: C


NEW QUESTION # 68
A company hired a third party to develop software as part of its strategy to be quicker to market. The company's policy outlines the following requirements:
The credentials used to publish production software to the container registry should be stored in a secure location.
Access should be restricted to the pipeline service account, without the ability for the third-party developer to read the credentials directly.
Which of the following would be the BEST recommendation for storing and monitoring access to these shared credentials?

  • A. Key vault
  • B. Local secure password file
  • C. TPM
  • D. MFA

Answer: A


NEW QUESTION # 69
An application server was recently upgraded to prefer TLS 1.3, and now users are unable to connect their clients to the server. Attempts to reproduce the error are confirmed, and clients are reporting the following:
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Which of the following is MOST likely the root cause?

  • A. The client application is configured to use AES-256 in GCM.
  • B. The client application is configured to use ECDHE.
  • C. The client application is testing PFS.
  • D. The client application is configured to use RC4.

Answer: D


NEW QUESTION # 70
A Chief information Security Officer (CISO) is developing corrective-action plans based on the following from a vulnerability scan of internal hosts:

Which of the following MOST appropriate corrective action to document for this finding?

  • A. The application developer should use a static code analysis tool to ensure any application code is not vulnerable to buffer overflows.
  • B. The system administrator should evaluate dependencies and perform upgrade as necessary.
  • C. The security operations center should develop a custom IDS rule to prevent attacks buffer overflows against this server.
  • D. The product owner should perform a business impact assessment regarding the ability to implement a WAF.

Answer: D


NEW QUESTION # 71
A security analyst sees that a hacker has discovered some keys and they are being made available on a public website. The security analyst is then able to successfully decrypt the data using the keys from the website.
Which of the following should the security analyst recommend to protect the affected data?

  • A. Zeroization
  • B. Key rotation
  • C. Key escrow
  • D. Key revocation
  • E. Cryptographic obfuscation

Answer: E


NEW QUESTION # 72
Which of the following terms refers to the delivery of encryption keys to a CASB or a third-party entity?

  • A. Key sharing
  • B. Key escrow
  • C. Key recovery
  • D. Key distribution

Answer: D


NEW QUESTION # 73
A security analyst detected a malicious PowerShell attack on a single server. The malware used the Invoke-Expression function to execute an external malicious script. The security analyst scanned the disk with an antivirus application and did not find any IOCs. The security analyst now needs to deploy a protection solution against this type of malware.
Which of the following BEST describes the type of malware the solution should protect against?

  • A. Logic bomb
  • B. Worm
  • C. Fileless
  • D. Rootkit

Answer: C


NEW QUESTION # 74
A developer wants to develop a secure external-facing web application. The developer is looking for an online community that produces tools, methodologies, articles, and documentation in the field of
web-application security Which of the following is the BEST option?

  • A. ICANN
  • B. NIST
  • C. PCI DSS
  • D. CSA
  • E. OWASP

Answer: E


NEW QUESTION # 75
An administrator at a software development company would like to protect the integrity Of the company's applications with digital signatures. The developers report that the signing process keeps failing on all applications. The same key pair used for signing, however,
is working properly on the website, is valid, and is issued by a trusted CA. Which of the following is MOST likely the cause of the signature failing?

  • A. The CA has included the certificate in its CRL_
  • B. The certificate is set for the wrong key usage.
  • C. Each application is missing a SAN or wildcard entry on the certificate.
  • D. The NTP server is set incorrectly for the developers.

Answer: B


NEW QUESTION # 76
A health company has reached the physical and computing capabilities in its datacenter, but the computing demand continues to increase. The infrastructure is fully virtualized and runs custom and commercial healthcare application that process sensitive health and payment information. Which of the following should the company implement to ensure it can meet the computing demand while complying with healthcare standard for virtualization and cloud computing?

  • A. Hybrid IaaS solution in a single-tenancy cloud
  • B. Pass solution in a multinency cloud
  • C. Private SaaS solution in a single tenancy cloud.
  • D. SaaS solution in a community cloud

Answer: C


NEW QUESTION # 77
A pharmaceutical company recently experienced a security breach within its customer-facing web portal. The attackers performed a SQL injection attack and exported tables from the company's managed database, exposing customer information.
The company hosts the application with a CSP utilizing the IaaS model. Which of the following parties is ultimately responsible for the breach?

  • A. The pharmaceutical company
  • B. The database software vendor
  • C. The cloud software provider
  • D. The web portal software vendor

Answer: A


NEW QUESTION # 78
A security engineer needs to recommend a solution that will meet the following requirements:
Identify sensitive data in the provider's network
Maintain compliance with company and regulatory guidelines
Detect and respond to insider threats, privileged user threats, and compromised accounts Enforce datacentric security, such as encryption, tokenization, and access control Which of the following solutions should the security engineer recommend to address these requirements?

  • A. SWG
  • B. DLP
  • C. WAF
  • D. CASB

Answer: C


NEW QUESTION # 79
A security analyst is investigating a series of suspicious emails by employees to the security team. The email appear to come from a current business partner and do not contain images or URLs. No images or URLs were stripped from the message by the security tools the company uses instead, the emails only include the following in plain text.

Which of the following should the security analyst perform?

  • A. Contact the security department at the business partner and alert them to the email event.
  • B. Block the IP address for the business partner at the perimeter firewall.
  • C. Configure the email gateway to automatically quarantine all messages originating from the business partner.
  • D. Pull the devices of the affected employees from the network in case they are infected with a zero-day virus.

Answer: A


NEW QUESTION # 80
......

Guaranteed Accomplishment with Newest Jul-2023 FREE: https://ensurepass.testkingfree.com/CompTIA/CAS-004-practice-exam-dumps.html

Related Articles

more
CompTIA CAS-004 Certification Practice Exam