[Oct 26, 2021] Valid CAS-003 Test Answers & CAS-003 Exam PDF
Valid CASP Recertification CAS-003 Dumps Ensure Your Passing
Conclusive Remarks
It is not so hard to complete the CompTIA CAS-003 exam if you possess the proper knowledge and you are learning from the correct source. This way, you can easily clear out the test without any difficulty. Hence, before opting for the CASP+ certification, you should understand the requirements and make sure you fulfill them, including working experience. But, you can boost your skills with the books mentioned above as they are providing the best guidance and give extra chances to ace the test in one go.
What is the duration of the CAS-003 Exam
- Number of Questions: 90
- Length of Examination: 165 minutes
- Format: Multiple choices, multiple answers
NEW QUESTION 123
A Chief Information Securiy Officer (CISO) is reviewing technical documentation from various regional offices and notices some key differences between these groups. The CISO has not discovered any governance documentation. The CISO creates the following chart to visualize the differences among the networking used.
Which of the following would be the CISO's MOST immediate concern?
- A. Network engineers have ignored defacto standards.
- B. Network engineers are not following SOPs.
- C. There are open standards in use on the network.
- D. The network has competing standards in use.
Answer: A
NEW QUESTION 124
A user has a laptop configured with multiple operating system installations. The operating systems are all installed on a single SSD, but each has its own partition and logical volume.
Which of the following is the BEST way to ensure confidentiality of individual operating system data?
- A. FDE of the entire SSD as a single disk
- B. FDE of each logical volume on the SSD
- C. Encryption of the SSD at the file level
- D. Encryption of each individual partition
Answer: D
Explanation:
In this question, we have multiple operating system installations on a single disk. Some operating systems store their boot loader in the MBR of the disk. However, some operating systems install their boot loader outside the MBR especially when multiple operating systems are installed. We need to encrypt as much data as possible but we cannot encrypt the boot loaders. This would prevent the operating systems from loading. Therefore, the solution is to encrypt each individual partition separately.
NEW QUESTION 125
A security administrator wants to deploy a dedicated storage solution which is inexpensive, can natively integrate with AD, allows files to be selectively encrypted and is suitable for a small number of users at a satellite office. Which of the following would BEST meet the requirement?
- A. SAN
- B. Virtual SAN
- C. Virtual storage
- D. NAS
Answer: D
Explanation:
A NAS is an inexpensive storage solution suitable for small offices. Individual files can be encrypted by using the EFS (Encrypted File System) functionality provided by the NTFS file system.
NAS typically uses a common Ethernet network and can provide storage services to any authorized devices on that network.
Two primary NAS protocols are used in most environments. The choice of protocol depends largely on the type of computer or server connecting to the storage. Network File System (NFS) protocol usually used by servers to access storage in a NAS environment. Common Internet File System (CIFS), also sometimes called Server Message Block (SMB), is usually used for desktops, especially those running Microsoft Windows. Unlike DAS and SAN, NAS is a file-level storage technology. This means the NAS appliance maintains and controls the files, folder structures, permission, and attributes of the data it holds. A typical NAS deployment integrates the NAS appliance with a user database, such as Active Directory, so file permissions can be assigned based on established users and groups. With Active Directory integration, most Windows New Technology File System (NTFS) permissions can be set on the files contained on a NAS device.
NEW QUESTION 126
Drag and drop the cloud deployment model to the associated use-case scenario. Options may be used only once or not at all.
Answer:
Explanation:
NEW QUESTION 127
A small retail company recently deployed a new point of sale (POS) system to all 67 stores. The core of the POS is an extranet site, accessible only from retail stores and the corporate office over a split-tunnel VPN. An additional split-tunnel VPN provides bi-directional connectivity back to the main office, which provides voice connectivity for store VoIP phones. Each store offers guest wireless functionality, as well as employee wireless. Only the staff wireless network has access to the POS VPN. Recently, stores are reporting poor response times when accessing the POS application from store computers as well as degraded voice quality when making phone calls. Upon investigation, it is determined that three store PCs are hosting malware, which is generating excessive network traffic. After malware removal, the information security department is asked to review the configuration and suggest changes to prevent this from happening again. Which of the following denotes the BEST way to mitigate future malware risk?
- A. Deploy a proxy server with content filtering at the corporate office and route all traffic through it.
- B. Deploy new perimeter firewalls at all stores with UTM functionality.
- C. Move to a VDI solution that runs offsite from the same data center that hosts the new POS solution.
- D. Change antivirus vendors at the store and the corporate office.
Answer: B
Explanation:
Explanation
A perimeter firewall is located between the local network and the Internet where it can screen network traffic flowing in and out of the organization. A firewall with unified threat management (UTM) functionalities includes anti-malware capabilities.
NEW QUESTION 128
A security administrator is updating a company's SCADA authentication system with a new application. To ensure interoperability between the legacy system and the new application, which of the following stakeholders should be involved in the configuration process before deployment?
(Choose two.)
- A. Compliance manager
- B. Human resources administrator
- C. Facilities manager
- D. Network engineer
- E. Service desk personnel
- F. Incident response coordinator
Answer: A,F
NEW QUESTION 129
A small company's Chief Executive Officer (CEO) has asked its Chief Security Officer (CSO) to improve the company's security posture quickly with regard to targeted attacks. Which of the following should the CSO conduct FIRST?
- A. Purchase multiple threat feeds to ensure diversity and implement blocks for malicious traffic.
- B. Deploy a UTM solution that receives frequent updates from a trusted industry vendor.
- C. Conduct an internal audit against industry best practices to perform a qualitative analysis.
- D. Survey threat feeds from services inside the same industry.
Answer: D
Explanation:
Explanation
Security posture refers to the overall security plan from planning through to implementation and comprises technical and non-technical policies, procedures and controls to protect from both internal and external threats.
From a security standpoint, one of the first questions that must be answered in improving the overall security posture of an organization is to identify where data resides. All the advances that were made by technology make this very difficult. The best way then to improve your company's security posture is to first survey threat feeds from services inside the same industry.
NEW QUESTION 130
While the code is still in the development environment, a security architect is testing the code stored in the code repository to ensure the top ten OWASP secure coding practices are being followed. Which of the following code analyzers will produce the desired results?
- A. Peer review
- B. Static
- C. Fuzzer
- D. Dynamic
Answer: B
NEW QUESTION 131
A security administrator was informed that a server unexpectedly rebooted. The administrator received an export of syslog entries for analysis:
Which of the following does the log sample indicate? (Choose two.)
- A. Encrypted payroll data was successfully decrypted by the attacker
- B. Syslog entries were lost due to the host being rebooted
- C. Buffer overflow in memory paging caused a kernel panic
- D. A root user performed an injection attack via kernel module
- E. Jsmith successfully used a privilege escalation attack
- F. Payroll data was exfiltrated to an attacker-controlled host
Answer: C,E
NEW QUESTION 132
A popular commercial virtualization platform allows for the creation of virtual hardware. To virtual machines, this virtual hardware is indistinguishable from real hardware. By implementing virtualized TPMs, which of the following trusted system concepts can be implemented?
- A. Software-based root of trust
- B. Software-based trust anchor with no root of trust
- C. Continuous chain of trust
- D. Chain of trust with a hardware root of trust
Answer: D
Explanation:
A Trusted Platform Module (TPM) is a microchip designed to provide basic security-related functions, primarily involving encryption keys. The TPM is usually installed on the motherboard of a computer, and it communicates with the remainder of the system by using a hardware bus.
A vTPM is a virtual Trusted Platform Module; a virtual instance of the TPM. IBM extended the current TPM V1.2 command set with virtual TPM management commands that allow us to create and delete instances of TPMs. Each created instance of a TPM holds an association with a virtual machine (VM) throughout its lifetime on the platform.
The TPM is the hardware root of trust.
Chain of trust means to extend the trust boundary from the root(s) of trust, in order to extend the collection of trustworthy functions. Implies/entails transitive trust. Therefore a virtual TPM is a chain of trust from the hardware TPM (root of trust).
NEW QUESTION 133
A financial consulting firm recently recovered from some damaging incidents that were associated with malware installed via rootkit. Post-incident analysis is ongoing, and the incident responders and systems administrators are working to determine a strategy to reduce the risk of recurrence. The firm's systems are running modern operating systems and feature UEFI and TPMs. Which of the following technical options would provide the MOST preventive value?
- A. Update the antivirus software and definitions
- B. Update and deploy GPOs
- C. Configure and use measured boot
- D. Strengthen the password complexity requirements
Answer: C
NEW QUESTION 134
Given the following code snippet:
Of which of the following is this snippet an example?
- A. Data execution prevention
- B. Input validation
- C. Buffer overflow
- D. Failure to use standard libraries
- E. Improper filed usage
Answer: E
NEW QUESTION 135
A developer implement the following code snippet.
Which of the following vulnerabilities does the code snippet resolve?
- A. SQL inject
- B. Buffer overflow
- C. Information leakage
- D. Missing session limit
Answer: C
NEW QUESTION 136
During a recent audit of servers, a company discovered that a network administrator, who required remote access, had deployed an unauthorized remote access application that communicated over common ports already allowed through the firewall. A network scan showed that this remote access application had already been installed on one third of the servers in the company. Which of the following is the MOST appropriate action that the company should take to provide a more appropriate solution?
- A. Implement the remote application out to the rest of the servers
- B. Implement an IPS to block the application on the network
- C. Implement an ACL on the firewall with NAT for remote access
- D. Implement SSL VPN with SAML standards for federation
Answer: D
Explanation:
Explanation
A Secure Sockets Layer (SSL) virtual private network (VPN) would provide the network administrator who requires remote access a secure and reliable method of accessing the system over the Internet. Security Assertion Markup Language (SAML) standards for federation will provide cross-web service authentication and authorization.
NEW QUESTION 137
A company has issued a new mobile device policy permitting BYOD and company-issued devices. The company-issued device has a managed middleware client that restricts the applications allowed on company devices and provides those that are approved. The middleware client provides configuration standardization for both company owned and BYOD to secure data and communication to the device according to industry best practices. The policy states that, "BYOD clients must meet the company's infrastructure requirements to permit a connection." The company also issues a memorandum separate from the policy, which provides instructions for the purchase, installation, and use of the middleware client on BYOD. Which of the following is being described?
- A. Change management
- B. Asset management
- C. Transference of risk
- D. IT governance
Answer: D
Explanation:
It governance is aimed at managing information security risks. It entails educating users about risk and implementing policies and procedures to reduce risk.
NEW QUESTION 138
A business is growing and starting to branch out into other locations. In anticipation of opening an office in a different country, the Chief Information Security Officer (CISO) and legal team agree they need to meet the following criteria regarding data to open the new office:
* Store taxation-related documents for five years
* Store customer addresses in an encrypted format
* Destroy customer information after one year
* Keep data only in the customer's home country
Which of the following should the CISO implement to BEST meet these requirements? (Choose three.)
- A. Encryption standard
- B. Data sovereignty policy
- C. Legal compliance policy
- D. Data retention policy
- E. Capacity planning policy
- F. Data classification standard
- G. Acceptable use policy
- H. Backup policy
Answer: A,B,D
NEW QUESTION 139
......
CAS-003 Dumps Real Exam Questions Test Engine Dumps Training: https://www.prep4sureguide.com/CAS-003-prep4sure-exam-guide.html
CAS-003 exam dumps and online Test Engine: https://drive.google.com/open?id=1XABlH-oEmkAuWP532Hciew3qUFqas384