1. Home
  2. CompTIA
  3. CAS-002

CompTIA Advanced Security Practitioner (CASP+)

Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CompTIA Certifications CAS-002 Questions & Answers

  • Question 441:

    An attacker attempts to create a DoS event against the VoIP system of a company. The attacker uses a tool to flood the network with a large number of SIP INVITE traffic. Which of the following would be LEAST likely to thwart such an attack?

    A. Install IDS/IPS systems on the network

    B. Force all SIP communication to be encrypted

    C. Create separate VLANs for voice and data traffic

    D. Implement QoS parameters on the switches

  • Question 442:

    When authenticating over HTTP using SAML, which of the following is issued to the authenticating user?

    A. A symmetric key

    B. A PKI ticket

    C. An X.509 certificate

    D. An assertion ticket

  • Question 443:

    Which of the following activities could reduce the security benefits of mandatory vacations?

    A. Have a replacement employee run the same applications as the vacationing employee.

    B. Have a replacement employee perform tasks in a different order from the vacationing employee.

    C. Have a replacement employee perform the job from a different workstation than the vacationing employee.

    D. Have a replacement employee run several daily scripts developed by the vacationing employee.

  • Question 444:

    The company is considering issuing non-standard tablet computers to executive management. Which of the following is the FIRST step the security manager should perform?

    A. Apply standard security policy settings to the devices.

    B. Set up an access control system to isolate the devices from the network.

    C. Integrate the tablets into standard remote access systems.

    D. Develop the use case for the devices and perform a risk analysis.

  • Question 445:

    A large enterprise is expanding through the acquisition of a second corporation. Which of the following should be undertaken FIRST before connecting the networks of the newly formed entity?

    A. A system and network scan to determine if all of the systems are secure.

    B. Implement a firewall/DMZ system between the networks.

    C. Develop a risk analysis for the merged networks.

    D. Conduct a complete review of the security posture of the acquired corporation.

  • Question 446:

    A wholesaler has decided to increase revenue streams by selling direct to the public through an on-line system. Initially this will be run as a short term trial and if profitable, will be expanded and form part of the day to day business. The risk manager has raised two main business risks for the initial trial:

    1.

    IT staff has no experience with establishing and managing secure on-line credit card processing.

    2.

    An internal credit card processing system will expose the business to additional compliance requirements.

    Which of the following is the BEST risk mitigation strategy?

    A. Transfer the risks to another internal department, who have more resources to accept the risk.

    B. Accept the risks and log acceptance in the risk register. Once the risks have been accepted close them out.

    C. Transfer the initial risks by outsourcing payment processing to a third party service provider.

    D. Mitigate the risks by hiring additional IT staff with the appropriate experience and certifications.

  • Question 447:

    An ISP is peering with a new provider and wishes to disclose which autonomous system numbers should be allowed through BGP for network transport. Which of the following should contain this information?

    A. Memorandum of Understanding

    B. Interconnection Security Agreement

    C. Operating Level Agreement

    D. Service Level Agreement

  • Question 448:

    A legacy system is not scheduled to be decommissioned for two years and requires the use of the standard Telnet protocol. Which of the following should be used to mitigate the security risks of this system?

    A. Migrate the system to IPv6.

    B. Migrate the system to RSH.

    C. Move the system to a secure VLAN.

    D. Use LDAPs for authentication.

  • Question 449:

    When Company A and Company B merged, the network security administrator for Company A was tasked with joining the two networks. Which of the following should be done FIRST?

    A. Implement a unified IPv6 addressing scheme on the entire network.

    B. Conduct a penetration test of Company B's network.

    C. Perform a vulnerability assessment on Company B's network.

    D. Perform a peer code review on Company B's application.

  • Question 450:

    Corporate policy states that the systems administrator should not be present during system audits. The security policy that states this is:

    A. Separation of duties.

    B. Mandatory vacation.

    C. Non-disclosure agreement.

    D. Least privilege.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.