1. Home
  2. CompTIA
  3. CAS-002

CompTIA CAS-002 Online Practice Questions and Exam Preparation

CAS-002 Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-002 Online Questions & Answers

  • Question 121:

    An administrator is notified that contract workers will be onsite assisting with a new project. The administrator wants each worker to be aware of the corporate policy pertaining to USB storage devices. Which of the following should each worker review and understand before beginning work?

    A. Interconnection Security Agreement
    B. Memorandum of Understanding
    C. Business Partnership Agreement
    D. Non-Disclosure Agreement

  • Question 122:

    A company is deploying a new iSCSI-based SAN. The requirements are as follows:

    SAN nodes must authenticate each other.

    Shared keys must NOT be used.

    Do NOT use encryption in order to gain performance.

    Which of the following design specifications meet all the requirements? (Select TWO).

    A. Targets use CHAP authentication
    B. IPSec using AH with PKI certificates for authentication
    C. Fiber channel should be used with AES
    D. Initiators and targets use CHAP authentication
    E. Fiber channel over Ethernet should be used
    F. IPSec using AH with PSK authentication and 3DES
    G. Targets have SCSI IDs for authentication

  • Question 123:

    An organization has had six security incidents over the past year against their main web application. Each time the organization was able to determine the cause of the incident and restore operations within a few hours to a few days. Which of the following provides the MOST comprehensive method for reducing the time to recover?

    A. Create security metrics that provide information on response times and requirements to determine the best place to focus time and money.
    B. Conduct a loss analysis to determine which systems to focus time and money towards increasing security.
    C. Implement a knowledge management process accessible to the help desk and finance departments to estimate cost and prioritize remediation.
    D. Develop an incident response team, require training for incident remediation, and provide incident reporting and tracking metrics.

  • Question 124:

    A network administrator notices a security intrusion on the web server. Which of the following is noticed by http://test.com/modules.php?op=modloadandname=XForumandfile=[hostilejavascript]andfid=2 in the log file?

    A. Buffer overflow
    B. Click jacking
    C. SQL injection
    D. XSS attack

  • Question 125:

    A security administrator notices a recent increase in workstations becoming compromised by malware. Often, the malware is delivered via drive-by downloads, from malware hosting websites, and is not being detected by the corporate antivirus. Which of the following solutions would provide the BEST protection for the company?

    A. Increase the frequency of antivirus downloads and install updates to all workstations.
    B. Deploy a cloud-based content filter and enable the appropriate category to prevent further infections.
    C. Deploy a NIPS to inspect and block all web traffic which may contain malware and exploits.
    D. Deploy a web based gateway antivirus server to intercept viruses before they enter the network.

  • Question 126:

    A wholesaler has decided to increase revenue streams by selling direct to the public through an on-line system. Initially this will be run as a short term trial and if profitable, will be expanded and form part of the day to day business. The risk manager has raised two main business risks for the initial trial:

    1.

    IT staff has no experience with establishing and managing secure on-line credit card processing.

    2.

    An internal credit card processing system will expose the business to additional compliance requirements.

    Which of the following is the BEST risk mitigation strategy?

    A. Transfer the risks to another internal department, who have more resources to accept the risk.
    B. Accept the risks and log acceptance in the risk register. Once the risks have been accepted close them out.
    C. Transfer the initial risks by outsourcing payment processing to a third party service provider.
    D. Mitigate the risks by hiring additional IT staff with the appropriate experience and certifications.

  • Question 127:

    Company Z is merging with Company A to expand its global presence and consumer base. This purchase includes several offices in different countries. To maintain strict internal security and compliance requirements, all employee activity may be monitored and reviewed. Which of the following would be the MOST likely cause for a change in this practice?

    A. The excessive time it will take to merge the company's information systems.
    B. Countries may have different legal or regulatory requirements.
    C. Company A might not have adequate staffing to conduct these reviews.
    D. The companies must consolidate security policies during the merger.

  • Question 128:

    During a specific incident response and recovery process action, the response team determines that it must first speak to the person ultimately responsible for the data. With whom should the response team speak FIRST?

    A. Data User
    B. Data Owner
    C. Business Owner
    D. Data Custodian

  • Question 129:

    Company XYZ finds itself using more cloud-based business tools, and password management is becoming onerous. Security is important to the company; as a result, password replication and shared accounts are not acceptable. Which of the following implementations addresses the distributed login with centralized authentication and has wide compatibility among SaaS vendors?

    A. Establish a cloud-based authentication service that supports SAML.
    B. Implement a new Diameter authentication server with read-only attestation.
    C. Install a read-only Active Directory server in the corporate DMZ for federation.
    D. Allow external connections to the existing corporate RADIUS server.

  • Question 130:

    Which of the following BEST describes the implications of placing an IDS device inside or outside of the corporate firewall?

    A. Placing the IDS device inside the firewall will allow it to monitor potential internal attacks but may increase the load on the system.
    B. Placing the IDS device outside the firewall will allow it to monitor potential remote attacks while still allowing the firewall to block the attack.
    C. Placing the IDS device inside the firewall will allow it to monitor potential remote attacks but may increase the load on the system.
    D. Placing the IDS device outside the firewall will allow it to monitor potential remote attacks but the firewall will not be able to block the attacks.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.