CAS-001 Exam Details

  • Exam Code
    :CAS-001
  • Exam Name
    :CompTIA Advanced Security Practitioner
  • Certification
    :CompTIA Advanced Security Practitioner
  • Vendor
    :CompTIA
  • Total Questions
    :493 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-001 Online Questions & Answers

  • Question 481:

    A mid-level company is rewriting its security policies and has halted the rewriting progress because the company's executives believe that its major vendors, who have cultivated a strong personal and professional relationship with the senior level staff, have a good handle on compliance and regulatory standards. Therefore, the executive level managers are allowing vendors to play a large role in writing the policy. Having experienced this type of environment in previous positions, and being aware that vendors may not always put the company's interests first, the IT Director decides that while vendor support is important, it is critical that the company writes the policy objectively.

    Which of the following is the recommendation the IT Director should present to senior staff?

    A. 1) Consult legal, moral, and ethical standards; 2) Draft General Organizational Policy; 3) Specify Functional Implementing Policies; 4) Allow vendors to review and participate in the establishment of focused compliance standards, plans, and procedures
    B. 1) Consult legal and regulatory requirements; 2) Draft General Organizational Policy; 3) Specify Functional Implementing Policies; 4) Establish necessary standards, procedures, baselines, and guidelines
    C. 1) Draft General Organizational Policy; 2) Establish necessary standards and compliance documentation; 3) Consult legal and industry security experts; 4) Determine acceptable tolerance guidelines
    D. 1) Draft a Specific Company Policy Plan; 2) Consult with vendors to review and collaborate with executives; 3) Add industry compliance where needed; 4) Specify Functional Implementing Policies

  • Question 482:

    A company has received the contract to begin developing a new suite of software tools to replace an aging collaboration solution. The original collaboration solution has been in place for nine years, contains over a million lines of code, and took over two years to develop originally. The SDLC has broken the primary delivery stages into eight different deliverables, with each section requiring an in-depth risk analysis before moving on to the next phase.

    Which of the following software development methods is MOST applicable?

    A. Spiral model
    B. Incremental model
    C. Waterfall model
    D. Agile model

  • Question 483:

    At 9:00 am each morning, all of the virtual desktops in a VDI implementation become extremely slow and/or unresponsive. The outage lasts for around 10 minutes, after which everything runs properly again. The administrator has traced the problem to a lab of thin clients that are all booted at 9:00 am each morning.

    Which of the following is the MOST likely cause of the problem and the BEST solution? (Select TWO).

    A. Add guests with more memory to increase capacity of the infrastructure.
    B. A backup is running on the thin clients at 9am every morning.
    C. Install more memory in the thin clients to handle the increased load while booting.
    D. Booting all the lab desktops at the same time is creating excessive I/O.
    E. Install 10-Gb uplinks between the hosts and the lab to increase network capacity.
    F. Install faster SSD drives in the storage system used in the infrastructure.
    G. The lab desktops are saturating the network while booting.
    H. The lab desktops are using more memory than is available to the host systems.

  • Question 484:

    The security engineer receives an incident ticket from the helpdesk stating that DNS lookup requests are no longer working from the office. The network team has ensured that Layer 2 and Layer 3 connectivity are working.

    Which of the following tools would a security engineer use to make sure the DNS server is listening on port 53?

    A. PING
    B. NESSUS
    C. NSLOOKUP
    D. NMAP

  • Question 485:

    The Chief Information Officer (CIO) is reviewing the IT centric BIA and RA documentation. The documentation shows that a single 24 hours downtime in a critical business function will cost the business $2.3 million. Additionally, the business unit which depends on the critical business function has determined that there is a high probability that a threat will materialize based on historical data. The CIO's budget does not allow for full system hardware replacement in case of a catastrophic failure, nor does it allow for the purchase of additional compensating controls.

    Which of the following should the CIO recommend to the finance director to minimize financial loss?

    A. The company should mitigate the risk.
    B. The company should transfer the risk.
    C. The company should avoid the risk.
    D. The company should accept the risk.

  • Question 486:

    A security analyst at Company A has been trying to convince the Information Security Officer (ISO) to allocate budget towards the purchase of a new intrusion prevention system (IPS) capable of analyzing encrypted web transactions. Which of the following should the analyst provide to the ISO to support the request? (Select TWO).

    A. Emerging threat reports
    B. Company attack tends
    C. Request for Quote (RFQ)
    D. Best practices
    E. New technologies report

  • Question 487:

    A company wishes to purchase a new security appliance. A security administrator has extensively researched the appliances, and after presenting security choices to the company's management team, they approve of the proposed solution. Which of the following documents should be constructed to acquire the security appliance?

    A. SLA
    B. RFQ
    C. RFP
    D. RFI

  • Question 488:

    An asset manager is struggling with the best way to reduce the time required to perform asset location activities in a large warehouse. A project manager indicated that RFID might be a valid solution if the asset manager's requirements were supported by current RFID capabilities.

    Which of the following requirements would be MOST difficult for the asset manager to implement?

    A. The ability to encrypt RFID data in transmission
    B. The ability to integrate environmental sensors into the RFID tag
    C. The ability to track assets in real time as they move throughout the facility
    D. The ability to assign RFID tags a unique identifier

  • Question 489:

    Company ABC is planning to outsource its Customer Relationship Management system (CRM) and marketing / leads management to Company XYZ. Which of the following is the MOST important to be considered before going ahead with the service?

    A. Internal auditors have approved the outsourcing arrangement.
    B. Penetration testing can be performed on the externally facing web system.
    C. Ensure there are security controls within the contract and the right to audit.
    D. A physical site audit is performed on Company XYZ's management / operation.

  • Question 490:

    A large organization has recently suffered a massive credit card breach. During the months of Incident Response, there were multiple attempts to assign blame as to whose fault it was that the incident occurred.

    In which part of the incident response phase would this be addressed in a controlled and productive manner?

    A. During the Identification Phase
    B. During the Lessons Learned phase
    C. During the Containment Phase
    D. During the Preparation Phase

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.