CompTIA CompTIA Certifications CAS-002 Questions & Answers

• Question 601:

  Company XYZ has purchased and is now deploying a new HTML5 application. The company wants to hire a penetration tester to evaluate the security of the client and server components of the proprietary web application before launch. Which of the following is the penetration tester MOST likely to use while performing black box testing of the security of the company's purchased application? (Select TWO).

  A. Code review

  B. Sandbox

  C. Local proxy

  D. Fuzzer

  E. Port scanner

  Correct Answer: CD

• Question 602:

  A company has decided to move to an agile software development methodology. The company gives all of its developers security training. After a year of agile, a management review finds that the number of items on a vulnerability scan has actually increased since the methodology change. Which of the following best practices has MOST likely been overlooked in the agile implementation?

  A. Penetration tests should be performed after each sprint.

  B. A security engineer should be paired with a developer during each cycle.

  C. The security requirements should be introduced during the implementation phase.

  D. The security requirements definition phase should be added to each sprint.

  Correct Answer: D

  

• Question 603:

  The helpdesk manager wants to find a solution that will enable the helpdesk staff to better serve company employees who call with computer-related problems. The helpdesk staff is currently unable to perform effective troubleshooting and relies on callers to describe their technology problems. Given that the helpdesk staff is located within the company headquarters and 90% of the callers are telecommuters, which of the following tools should the helpdesk manager use to make the staff more effective at troubleshooting while at the same time reducing company costs? (Select TWO).

  A. Web cameras

  B. Email

  C. Instant messaging

  D. BYOD

  E. Desktop sharing

  F. Presence

  Correct Answer: CE

• Question 604:

  A security officer is leading a lessons learned meeting. Which of the following should be components of that meeting? (Select TWO).

  A. Demonstration of IPS system

  B. Review vendor selection process

  C. Calculate the ALE for the event

  D. Discussion of event timeline

  E. Assigning of follow up items

  Correct Answer: DE

• Question 605:

  The Chief Executive Officer (CEO) has asked the IT administrator to protect the externally facing web server from SQL injection attacks and ensure the backend database server is monitored for unusual behavior while enforcing rules to terminate unusual behavior. Which of the following would BEST meet the CEO's requirements?

  A. WAF and DAM

  B. UTM and NIDS

  C. DAM and SIEM

  D. UTM and HSM

  E. WAF and SIEM

  Correct Answer: A

• Question 606:

  The helpdesk department desires to roll out a remote support application for internal use on all company computers. This tool should allow remote desktop sharing, system log gathering, chat, hardware logging, inventory management, and remote registry access. The risk management team has been asked to review vendor responses to the RFQ. Which of the following questions is the MOST important?

  A. What are the protections against MITM?

  B. What accountability is built into the remote support application?

  C. What encryption standards are used in tracking database?

  D. What snapshot or "undo" features are present in the application?

  E. What encryption standards are used in remote desktop and file transfer functionality?

  Correct Answer: B

• Question 607:

  Using SSL, an administrator wishes to secure public facing server farms in three subdomains:

  dc1.east.company.com, dc2.central.company.com, and dc3.west.company.com. Which of the following is the number of wildcard SSL certificates that should be purchased?

  A. 1

  B. 2

  C. 3

  D. 6

  Correct Answer: C

• Question 608:

  Which of the following is the BEST place to contractually document security priorities, responsibilities, guarantees, and warranties when dealing with outsourcing providers?

  A. SLA

  B. MOU

  C. OLA

  D. NDA

  Correct Answer: A

• Question 609:

  During a recent audit of servers, a company discovered that a network administrator, who required remote access, had deployed an unauthorized remote access application that communicated over common ports already allowed through the firewall. A network scan showed that this remote access application had already been installed on one third of the servers in the company. Which of the following is the MOST appropriate action that the company should take to provide a more appropriate solution?

  A. Implement an IPS to block the application on the network

  B. Implement the remote application out to the rest of the servers

  C. Implement SSL VPN with SAML standards for federation

  D. Implement an ACL on the firewall with NAT for remote access

  Correct Answer: C

• Question 610:

  A new web based application has been developed and deployed in production. A security engineer decides to use an HTTP interceptor for testing the application. Which of the following problems would MOST likely be uncovered by this tool?

  A. The tool could show that input validation was only enabled on the client side

  B. The tool could enumerate backend SQL database table and column names

  C. The tool could force HTTP methods such as DELETE that the server has denied

  D. The tool could fuzz the application to determine where memory leaks occur

  Correct Answer: A