1. Home
  2. CompTIA
  3. CAS-002

CompTIA CAS-002 Online Practice Questions and Exam Preparation

CAS-002 Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-002 Online Questions & Answers

  • Question 141:

    A system administrator needs to meet the maximum amount of security goals for a new DNS infrastructure. The administrator deploys DNSSEC extensions to the domain names and infrastructure. Which of the following security goals does this meet? (Select TWO).

    A. Availability
    B. Authentication
    C. Integrity
    D. Confidentiality
    E. Encryption

  • Question 142:

    A security manager is collecting RFQ, RFP, and RFI publications to help identify the technology trends which a government will be moving towards in the future. This information is available to the public. By consolidating the information, the security manager will be able to combine several perspectives into a broader view of technology trends. This is an example of which of the following? (Select TWO).

    A. Supervisory control and data acquisition
    B. Espionage
    C. Hacktivism
    D. Data aggregation
    E. Universal description discovery and integration
    F. Open source intelligence gathering

  • Question 143:

    Due to a new regulation, a company has to increase active monitoring of security-related events to 24 hours a day. The security staff only has three full time employees that work during normal business hours. Instead of hiring new security analysts to cover the remaining shifts necessary to meet the monitoring requirement, the Chief Information Officer (CIO) has hired a Managed Security Service (MSS) to monitor events. Which of the following should the company do to ensure that the chosen MSS meets expectations?

    A. Develop a memorandum of understanding on what the MSS is responsible to provide.
    B. Create internal metrics to track MSS performance.
    C. Establish a mutually agreed upon service level agreement.
    D. Issue a RFP to ensure the MSS follows guidelines.

  • Question 144:

    An administrator believes that the web servers are being flooded with excessive traffic from time to time. The administrator suspects that these traffic floods correspond to when a competitor makes major announcements. Which of the following should the administrator do to prove this theory?

    A. Implement data analytics to try and correlate the occurrence times.
    B. Implement a honey pot to capture traffic during the next attack.
    C. Configure the servers for high availability to handle the additional bandwidth.
    D. Log all traffic coming from the competitor's public IP addresses.

  • Question 145:

    A security analyst, Ann, states that she believes Internet facing file transfer servers are being attacked. Which of the following is evidence that would aid Ann in making a case to management that action needs to be taken to safeguard these servers?

    A. Provide a report of all the IP addresses that are connecting to the systems and their locations
    B. Establish alerts at a certain threshold to notify the analyst of high activity
    C. Provide a report showing the file transfer logs of the servers
    D. Compare the current activity to the baseline of normal activity

  • Question 146:

    An employee of a company files a complaint with a security administrator. While sniffing network traffic, the employee discovers that financially confidential emails were passing between two warehouse users. The two users deny sending confidential emails to each other. Which of the following security practices would allow for non-repudiation and prevent network sniffers from reading the confidential mail? (Select TWO).

    A. Transport encryption
    B. Authentication hashing
    C. Digital signature
    D. Legal mail hold
    E. TSIG code signing

  • Question 147:

    An IT administrator has been tasked with implementing an appliance-based web proxy server to control external content accessed by internal staff. Concerned with the threat of corporate data leakage via web- based email, the IT administrator wants to decrypt all outbound HTTPS sessions and pass the decrypted content to an ICAP server for inspection by the corporate DLP software. Which of the following is BEST at protecting the internal certificates used in the decryption process?

    A. NIPS
    B. HSM
    C. UTM
    D. HIDS
    E. WAF
    F. SIEM

  • Question 148:

    An organization has implemented an Agile development process for front end web application development. A new security architect has just joined the company and wants to integrate security activities into the SDLC. Which of the following activities MUST be mandated to ensure code quality from a security perspective? (Select TWO).

    A. Static and dynamic analysis is run as part of integration
    B. Security standards and training is performed as part of the project
    C. Daily stand-up meetings are held to ensure security requirements are understood
    D. For each major iteration penetration testing is performed
    E. Security requirements are story boarded and make it into the build
    F. A security design is performed at the end of the requirements phase

  • Question 149:

    A financial institution has decided to purchase a very expensive resource management system and has selected the product and vendor. The vendor is experiencing some minor, but public, legal issues. Senior management has some concerns on maintaining this system should the vendor go out of business. Which of the following should the Chief Information Security Officer (CISO) recommend to BEST limit exposure?

    A. Include a source code escrow clause in the contract for this system.
    B. Require proof-of-insurance by the vendor in the RFP for this system.
    C. Include a penalty clause in the contract for this system.
    D. Require on-going maintenance as part of the SLA for this system.

  • Question 150:

    An administrator attempts to install the package "named.9.3.6-12-x86_64.rpm" on a server. Even though the package was downloaded from the official repository, the server states the package cannot be installed because no GPG key is found. Which of the following should the administrator perform to allow the program to be installed?

    A. Download the file from the program publisher's website.
    B. Generate RSA and DSA keys using GPG.
    C. Import the repository's public key.
    D. Run sha1sum and verify the hash.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.