CompTIA CAS-002 Online Practice Questions and Exam Preparation

CompTIA CAS-002 Online Questions & Answers

• Question 221:

  Which of the following should be used with caution because of its ability to provide access to block level data instead of file level data?

  A. CIFS
  B. NFS
  C. iSCSI
  D. NAS
  C. iSCSI

• Question 222:

  Corporate policy states that the systems administrator should not be present during system audits. The security policy that states this is:

  A. Separation of duties.
  B. Mandatory vacation.
  C. Non-disclosure agreement.
  D. Least privilege.
  A. Separation of duties.

• Question 223:

  Which of the following provides the HIGHEST level of security for an integrated network providing services to authenticated corporate users?

  A. Point to point VPN tunnels for external users, three-factor authentication, a cold site, physical security guards, cloud based servers, and IPv6 networking.
  B. IPv6 networking, port security, full disk encryption, three-factor authentication, cloud based servers, and a cold site.
  C. Port security on switches, point to point VPN tunnels for user server connections, two- factor cryptographic authentication, physical locks, and a standby hot site.
  D. Port security on all switches, point to point VPN tunnels for user connections to servers, two-factor authentication, a sign-in roster, and a warm site.
  C. Port security on switches, point to point VPN tunnels for user server connections, two- factor cryptographic authentication, physical locks, and a standby hot site.

• Question 224:

  A security manager at Company ABC, needs to perform a risk assessment of a new mobile device which the Chief Information Officer (CIO) wants to immediately deploy to all employees in the company. The product is commercially available, runs a popular mobile operating system, and can connect to IPv6 networks wirelessly. The model the CIO wants to procure also includes the upgraded 160GB solid state hard drive. The producer of the device will not reveal exact numbers but experts estimate that over 73 million of the devices have been sold worldwide. Which of the following is the BEST list of factors the security manager should consider while performing a risk assessment?

  A. Ability to remotely wipe the devices, apply security controls remotely, and encrypt the SSD; the track record of the vendor in publicizing and correcting security flaws in their products; predicted costs associated with maintaining, integrating and securing the devices.
  B. Ability to remotely administer the devices, apply security controls remotely, and remove the SSD; the track record of the vendor in securely implementing IPv6 with IPSec; predicted costs associated with securing the devices.
  C. Ability to remotely monitor the devices, remove security controls remotely, and decrypt the SSD; the track record of the vendor in publicizing and preventing security flaws in their products; predicted costs associated with maintaining, destroying and tracking the devices.
  D. Ability to remotely sanitize the devices, apply security controls locally, encrypt the SSD; the track record of the vendor in adapting the open source operating system to their platform; predicted costs associated with inventory management, maintaining, integrating and securing the devices.
  A. Ability to remotely wipe the devices, apply security controls remotely, and encrypt the SSD; the track record of the vendor in publicizing and correcting security flaws in their products; predicted costs associated with maintaining, integrating and securing the devices.

• Question 225:

  An organization is selecting a SaaS provider to replace its legacy, in house Customer Resource Management (CRM) application. Which of the following ensures the organization mitigates the risk of managing separate user credentials?

  A. Ensure the SaaS provider supports dual factor authentication.
  B. Ensure the SaaS provider supports encrypted password transmission and storage.
  C. Ensure the SaaS provider supports secure hash file exchange.
  D. Ensure the SaaS provider supports role-based access control.
  E. Ensure the SaaS provider supports directory services federation.
  E. Ensure the SaaS provider supports directory services federation.

• Question 226:

  A software vendor has had several zero-day attacks against its software, due to previously unknown security defects being exploited by attackers. The attackers have been able to perform operations at the same security level as the trusted application. The vendor product management team has decided to re- design the application with security as a priority. Which of the following is a design principle that should be used to BEST prevent these types of attacks?

  A. Application sandboxing
  B. Input validation
  C. Penetration testing
  D. Code reviews
  A. Application sandboxing

• Question 227:

  The Chief Executive Officer (CEO) of a corporation purchased the latest mobile device and wants to connect it to the company's internal network. The Chief Information Security Officer (CISO) was told to research and recommend how to secure this device.

  Which of the following recommendations should be implemented to keep the device from posing a security risk to the company?

  A. A corporate policy to prevent sensitive information from residing on a mobile device and anti- virus software.
  B. Encryption of the non-volatile memory and a corporate policy to prevent sensitive information from residing on a mobile device.
  C. Encryption of the non-volatile memory and a password or PIN to access the device.
  D. A password or PIN to access the device and a corporate policy to prevent sensitive information from residing on a mobile device.
  C. Encryption of the non-volatile memory and a password or PIN to access the device.

• Question 228:

  The DLP solution has been showing some unidentified encrypted data being sent using FTP to a remote server. A vulnerability scan found a collection of Linux servers that are missing OS level patches. Upon further investigation, a technician notices that there are a few unidentified processes running on a number of the servers. What would be a key FIRST step for the data security team to undertake at this point?

  A. Capture process ID data and submit to anti-virus vendor for review.
  B. Reboot the Linux servers, check running processes, and install needed patches.
  C. Remove a single Linux server from production and place in quarantine.
  D. Notify upper management of a security breach.
  E. Conduct a bit level image, including RAM, of one or more of the Linux servers.
  E. Conduct a bit level image, including RAM, of one or more of the Linux servers.

• Question 229:

  A security services company is scoping a proposal with a client. They want to perform a general security audit of their environment within a two week period and consequently have the following requirements: Requirement 1 -Ensure their server infrastructure operating systems are at their latest patch levels Requirement 2 -Test the behavior between the application and database Requirement 3 -Ensure that customer data can not be exfiltrated Which of the following is the BEST solution to meet the above requirements?

  A. Penetration test, perform social engineering and run a vulnerability scanner
  B. Perform dynamic code analysis, penetration test and run a vulnerability scanner
  C. Conduct network analysis, dynamic code analysis, and static code analysis
  D. Run a protocol analyzer perform static code analysis and vulnerability assessment
  B. Perform dynamic code analysis, penetration test and run a vulnerability scanner

• Question 230:

  A system administrator needs to meet the maximum amount of security goals for a new DNS infrastructure. The administrator deploys DNSSEC extensions to the domain names and infrastructure. Which of the following security goals does this meet? (Select TWO).

  A. Availability
  B. Authentication
  C. Integrity
  D. Confidentiality
  E. Encryption
  B. Authentication
  C. Integrity