CompTIA CompTIA Certifications CAS-004 Questions & Answers

• Question 471:

  A company has decided to move an ERP application to a public cloud vendor. The company wants to replicate some of its global policies from on premises to cloud. The policies include data encryption, token management, and limited user

  access to the ERP application The Chief Information Officer (CIO) is mainly concerned about privileged accounts that might be compromised and used to alter data in the ERP application.

  Which of the following is the BEST option to meet the requirements?

  A. Sandboxing

  B. CASB

  C. MFA

  D. Security as a service

  Correct Answer: D

• Question 472:

  A system administrator at a medical imaging company discovers protected health information (PHI) on a general-purpose file server. Which of the following steps should the administrator take NEXT?

  A. Isolate all of the PHI on its own VLAN and keep it segregated at Layer 2.

  B. Take an MD5 hash of the server.

  C. Delete all PHI from the network until the legal department is consulted.

  D. Consult the legal department to determine the legal requirements.

  Correct Answer: A

• Question 473:

  Which of the following controls primarily detects abuse of privilege but does not prevent it?

  A. Off-boarding

  B. Separation of duties

  C. Least privilege

  D. Job rotation

  Correct Answer: A

• Question 474:

  A developer needs to provide feedback on a peer's work during the SDLC. While reviewing the code changes, the developer discovers session ID tokens for a web application will be transmitted over an unsecure connection. Which of the following code snippets should the developer recommend implementing to correct the vulnerability?

  A. Cookie cookie = new Cookie ("primary"); cookie.secure(true);

  B. String input = request.getParameter ("input"); String character Pattern = "[./a-zA-ZO-9? "=" and]"; If (! input.matches (character Pattern)} { out.println ("Invalid Input"); )

  C. 15

  D. V>

  Correct Answer: A

• Question 475:

  Which of the following agreements includes no penalties and can be signed by two entities that are working together toward the same goal?

  A. MOU

  B. NDA

  C. SLA

  D. ISA

  Correct Answer: A

• Question 476:

  An HVAC contractor requested network connectivity permission to remotely support/troubleshoot equipment issues at a company location. Currently, the company does not have a process that allows vendors remote access to the corporate network.

  Which of the following solutions represents the BEST course of action to allow the contractor access?

  A. Add the vendor's equipment to the existing network Give the vendor access through the standard corporate VPN

  B. Give the vendor a standard desktop PC to attach the equipment to Give the vendor access through the standard corporate VPN

  C. Establish a certification process for the vendor Allow certified vendors access to the VDI to monitor and maintain the HVAC equipment

  D. Create a dedicated segment with no access to the corporate network Implement dedicated VPN hardware for vendor access

  Correct Answer: D

• Question 477:

  A security architect is given the following requirements to secure a rapidly changing enterprise with an increasingly distributed and remote workforce

  1.

  Cloud-delivered services

  2.

  Full network security stack

  3.

  SaaS application security management

  4.

  Minimal latency for an optimal user experience

  5.

  Integration with the cloud 1AM platform

  Which of the following is the BEST solution?

  A. Routing and Remote Access Service (RRAS)

  B. NGFW

  C. Managed Security Service Provider (MSSP)

  D. SASE

  Correct Answer: D

• Question 478:

  A large number of emails have been reported, and a security analyst is reviewing the following information from the emails:

  

  As part of the image process, which of the following is the FIRST step the analyst should take?

  A. Block the email address carl b@comptia1 com, as it is sending spam to subject matter experts

  B. Validate the final "Received" header against the DNS entry of the domain.

  C. Compare the 'Return-Path" and "Received" fields.

  D. Ignore the emails, as SPF validation is successful, and it is a false positive

  Correct Answer: B

• Question 479:

  A company recently acquired a SaaS provider and needs to integrate its platform into the company's existing infrastructure without impact to the customer's experience. The SaaS provider does not have a mature security program A recent vulnerability scan of the SaaS provider's systems shows multiple critical vulnerabilities attributed to very old and outdated Oss.

  Which of the following solutions would prevent these vulnerabilities from being introduced into the company's existing infrastructure?

  A. Segment the systems to reduce the attack surface if an attack occurs

  B. Migrate the services to new systems with a supported and patched OS.

  C. Patch the systems to the latest versions of the existing OSs

  D. Install anti-malware. HIPS, and host-based firewalls on each of the systems

  Correct Answer: B

• Question 480:

  The goal of a Chief information Security Officer (CISO) providing up-to-date metrics to a bank's risk committee is to ensure:

  A. Budgeting for cybersecurity increases year over year.

  B. The committee knows how much work is being done.

  C. Business units are responsible for their own mitigation.

  D. The bank is aware of the status of cybersecurity risks

  Correct Answer: A