[Jul 02, 2023] CAS-004 Exam Dumps - Try Best CAS-004 Exam Questions - Exams-boost
Verified CAS-004 exam dumps Q&As with Correct 256 Questions and Answers
NEW QUESTION # 51
A health company has reached the physical and computing capabilities in its datacenter, but the computing demand continues to increase. The infrastructure is fully virtualized and runs custom and commercial healthcare application that process sensitive health and payment information. Which of the following should the company implement to ensure it can meet the computing demand while complying with healthcare standard for virtualization and cloud computing?
- A. Pass solution in a multinency cloud
- B. Hybrid IaaS solution in a single-tenancy cloud
- C. SaaS solution in a community cloud
- D. Private SaaS solution in a single tenancy cloud.
Answer: D
NEW QUESTION # 52
An organization developed a social media application that is used by customers in multiple remote geographic locations around the world. The organization's headquarters and only datacenter are located in New York City. The Chief Information Security Officer wants to ensure the following requirements are met for the social media application:
Low latency for all mobile users to improve the users' experience
SSL offloading to improve web server performance
Protection against DoS and DDoS attacks
High availability
Which of the following should the organization implement to BEST ensure all requirements are met?
- A. Dual gigabit-speed Internet connections with managed DDoS prevention
- B. A CDN with the origin set to its datacenter
- C. A load-balanced group of reverse proxy servers with SSL acceleration
- D. A cache server farm in its datacenter
Answer: C
NEW QUESTION # 53
Given the following log snippet from a web server:
Which of the following BEST describes this type of attack?
- A. Cross-site scripting
- B. Cross-site request forgery
- C. Brute-force
- D. SQL injection
Answer: D
NEW QUESTION # 54
An energy company is required to report the average pressure of natural gas used over the past quarter. A PLC sends data to a historian server that creates the required reports.
Which of the following historian server locations will allow the business to get the required reports in an and IT environment?
- A. In the IT environment, allow PLCs to send data from the environment to the IT environment.
- B. In the environment, allow IT traffic into the environment.
- C. In the environment, use a VPN from the IT environment into the environment.
- D. Use a screened subnet between the and IT environments.
Answer: A
NEW QUESTION # 55
A security analyst discovered that the company's WAF was not properly configured. The main web server was breached, and the following payload was found in one of the malicious requests:
Which of the following would BEST mitigate this vulnerability?
- A. CAPTCHA
- B. Data encoding
- C. Network intrusion prevention
- D. Input validation
Answer: D
NEW QUESTION # 56
Device event logs sources from MDM software as follows:
Which of the following security concerns and response actions would BEST address the risks posed by the device in the logs?
- A. Falsified status reporting; remotely wipe the device.
- B. Malicious installation of an application; change the MDM configuration to remove application ID 1220.
- C. Impossible travel; disable the device's account and access while investigating.
- D. Resource leak; recover the device for analysis and clean up the local storage.
Answer: B
NEW QUESTION # 57
A company requires a task to be carried by more than one person concurrently. This is an example of:
- A. separation of d duties.
- B. least privilege
- C. dual control
- D. job rotation
Answer: A
NEW QUESTION # 58
Company A acquired Company B.
During an audit, a security engineer found Company B's environment was inadequately patched.
In response, Company A placed a firewall between the two environments until Company B's infrastructure could be integrated into Company A's security program.
Which of the following risk-handling techniques was used?
- A. Avoid
- B. Mitigate
- C. Transfer
- D. Accept
Answer: B
NEW QUESTION # 59
An auditor Is reviewing the logs from a web application to determine the source of an Incident. The web application architecture Includes an Internet-accessible application load balancer, a number of web servers In a private subnet, application servers, and one database server In a tiered configuration. The application load balancer cannot store the logs. The following are sample log snippets:
Which of the following should the auditor recommend to ensure future incidents can be traced back to the sources?
- A. Use stored procedures on the database server.
- B. Install a software-based HIDS on the application servers.
- C. Store the value of the $_server ( ' REMOTE_ADDR ' ] received by the web servers.
- D. Enable the x-Forwarded-For header al the load balancer.
- E. Install a certificate signed by a trusted CA.
Answer: E
NEW QUESTION # 60
Based on PCI DSS v3.4, One Particular database field can store data, but the data must be unreadable. which of the following data objects meets this requirement?
- A. CVV2
- B. expiration date
- C. PAN
- D. Cardholder name
Answer: C
NEW QUESTION # 61
A company wants to quantify and communicate the effectiveness of its security controls but must establish measures. Which of the following is MOST likely to be included in an effective assessment roadmap for these controls?
- A. Create an integrated master schedule.
- B. Establish key performance indicators.
- C. Develop a communication plan.
- D. Create a change management process.
- E. Perform a security control assessment.
Answer: A
NEW QUESTION # 62
A security architect is implementing a web application that uses a database back end. Prior to the production, the architect is concerned about the possibility of XSS attacks and wants to identify security controls that could be put in place to prevent these attacks.
Which of the following sources could the architect consult to address this security concern?
- A. OVAL
- B. IEEE
- C. OWASP
- D. SDLC
Answer: C
Explanation:
OWASP is a resource used to identify attack vectors and their mitigations, OVAL is a vulnerability assessment standard
NEW QUESTION # 63
A forensic investigator would use the foremost command for:
- A. cloning disks.
- B. recovering lost files.
- C. analyzing network-captured packets.
- D. extracting features such as email addresses
Answer: B
NEW QUESTION # 64
A shipping company that is trying to eliminate entire classes of threats is developing an SELinux policy to ensure its custom Android devices are used exclusively for package tracking.
After compiling and implementing the policy, in which of the following modes must the company ensure the devices are configured to run?
- A. Mandatory
- B. Permissive
- C. Protecting
- D. Enforcing
Answer: D
NEW QUESTION # 65
A company that uses AD is migrating services from LDAP to secure LDAP. During the pilot phase, services are not connecting properly to secure LDAP. Block is an except of output from the troubleshooting session:
Which of the following BEST explains why secure LDAP is not working? (Select TWO.)
- A. The clients may not trust Chicago by default.
- B. The secure LDAP service is not started, so no connections can be made.
- C. Secure LDAP should be running on UDP rather than TCP.
- D. The clients may not trust idapt by default.
- E. Secure LDAP does not support wildcard certificates.
- F. The company is using the wrong port. It should be using port 389 for secure LDAP.
- G. Danvills.com is under a DDoS-inator attack and cannot respond to OCSP requests.
Answer: B,F
NEW QUESTION # 66
An organization requires a legacy system to incorporate reference data into a new system. The organization anticipates the legacy system will remain in operation for the next 18 to 24 months. Additionally, the legacy system has multiple critical vulnerabilities with no patches available to resolve them. Which of the following is the BEST design option to optimize security?
- A. Place the new system and legacy system on separate VLANs
- B. Deploy the legacy application on an air-gapped system.
- C. Limit access to the system using a jump box.
- D. Implement MFA to access the legacy system.
Answer: B
NEW QUESTION # 67
......
The CASP+ exam is a performance-based certification that tests the candidates on their ability to handle complex security scenarios in real-world situations. The exam covers a wide range of topics, including enterprise security, risk management, research and analysis, integration of computing, communications and business disciplines, and technical integration of enterprise components. The exam is designed to assess the candidates' ability to apply critical thinking and judgment across a broad spectrum of security disciplines to propose and implement solutions that map to enterprise drivers. The CASP+ certification is highly regarded in the industry and is recognized by government agencies and private corporations worldwide.
CompTIA CAS-004, also known as the CompTIA Advanced Security Practitioner (CASP+) certification exam, is a globally recognized certification that validates advanced-level competency in cybersecurity. This certification is designed for professionals who want to advance their careers in cybersecurity and have at least ten years of experience in IT administration, including at least five years of hands-on technical security experience.
For more information about the CompTIA CAS-004 Exam visit the following reference link:
CompTIA CAS-004 Exam's Reference link
CompTIA CAS-004 Test Engine PDF - All Free Dumps: https://testking.exams-boost.com/CAS-004-valid-materials.html