CAS-002 Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-002 Online Questions & Answers

  • Question 701:

    The Information Security Officer (ISO) is reviewing a summary of the findings from the last COOP tabletop exercise. The Chief Information Officer (CIO) wants to determine which additional controls must be implemented to reduce the risk of an extended customer service outage due to the VoIP system being unavailable. Which of the following BEST describes the scenario presented and the document the ISO is reviewing?

    A. The ISO is evaluating the business implications of a recent telephone system failure within the BIA.
    B. The ISO is investigating the impact of a possible downtime of the messaging system within the RA.
    C. The ISO is calculating the budget adjustment needed to ensure audio/video system redundancy within the RFQ.
    D. The ISO is assessing the effect of a simulated downtime involving the telecommunication system within the AAR.

  • Question 702:

    A security manager is looking into the following vendor proposal for a cloud-based SIEM solution. The intention is that the cost of the SIEM solution will be justified by having reduced the number of incidents and therefore saving on the amount spent investigating incidents.

    Proposal:

    External cloud-based software as a service subscription costing $5,000 per month. Expected to reduce the number of current incidents per annum by 50%.

    The company currently has ten security incidents per annum at an average cost of $10,000 per incident. Which of the following is the ROI for this proposal after three years?

    A. -$30,000
    B. $120,000
    C. $150,000
    D. $180,000

  • Question 703:

    Two universities are making their 802.11n wireless networks available to the other university's students. The infrastructure will pass the student's credentials back to the home school for authentication via the Internet.

    The requirements are: Mutual authentication of clients and authentication server The design should not limit connection speeds Authentication must be delegated to the home school No passwords should be sent unencrypted The following design was implemented: WPA2 Enterprise using EAP-PEAP-MSCHAPv2 will be used for wireless security RADIUS proxy servers will be used to forward authentication requests to the home school The RADIUS servers will have certificates from a common public certificate authority A strong shared secret will be used for RADIUS server authentication Which of the following security considerations should be added to the design?

    A. The transport layer between the RADIUS servers should be secured
    B. WPA Enterprise should be used to decrease the network overhead
    C. The RADIUS servers should have local accounts for the visiting students
    D. Students should be given certificates to use for authentication to the network

  • Question 704:

    The sales team is considering the deployment of a new CRM solution within the enterprise. The IT and Security teams are members of the project; however, neither team has expertise or experience with the proposed system. Which of the following activities should be performed FIRST?

    A. Visit a company who already has the technology, sign an NDA, and read their latest risk assessment.
    B. Contact the top vendor, assign IT and Security to work together to implement a demo and pen test the system.
    C. Work with Finance to do a second ROI calculation before continuing further with the project.
    D. Research the market, select the top vendors and solicit RFPs from those vendors.

  • Question 705:

    The VoIP administrator starts receiving reports that users are having problems placing phone calls. The VoIP administrator cannot determine the issue, and asks the security administrator for help. The security administrator reviews the switch interfaces and does not see an excessive amount of network traffic on the voice network. Using a protocol analyzer, the security administrator does see an excessive number of SIP INVITE packets destined for the SIP proxy. Based on the information given, which of the following types of attacks is underway and how can it be remediated?

    A. Man in the middle attack; install an IPS in front of SIP proxy.
    B. Man in the middle attack; use 802.1x to secure voice VLAN.
    C. Denial of Service; switch to more secure H.323 protocol.
    D. Denial of Service; use rate limiting to limit traffic.

  • Question 706:

    The sales division within a large organization purchased touch screen tablet computers for all 250 sales representatives in an effort to showcase the use of technology to its customers and increase productivity. This includes the development of a new product tracking application that works with the new platform. The security manager attempted to stop the deployment because the equipment and application are non- standard and unsupported within the organization. However, upper management decided to continue the deployment. Which of the following provides the BEST method for evaluating the potential threats?

    A. Conduct a vulnerability assessment to determine the security posture of the new devices and the application.
    B. Benchmark other organization's that already encountered this type of situation and apply all relevant learning's and industry best practices.
    C. Work with the business to understand and classify the risk associated with the full lifecycle of the hardware and software deployment.
    D. Develop a standard image for the new devices and migrate to a web application to eliminate locally resident data.

  • Question 707:

    About twice a year a switch fails in a company's network center. Under the maintenance contract, the switch would be replaced in two hours losing the business $1,000 per hour. The cost of a spare switch is $3,000 with a 12-hour delivery time and would eliminate downtime costs if purchased ahead of time. The maintenance contract is $1,500 per year.

    Which of the following is true in this scenario?

    A. It is more cost-effective to eliminate the maintenance contract and purchase a replacement upon failure.
    B. It is more cost-effective to purchase a spare switch prior to an outage and eliminate the maintenance contract.
    C. It is more cost-effective to keep the maintenance contract instead of purchasing a spare switch prior to an outage.
    D. It is more cost-effective to purchase a spare switch prior to an outage and keep the maintenance contract.

  • Question 708:

    A web administrator develops a web form for users to respond to the company via a web page. Which of the following should be practiced to avoid a security risk?

    A. SQL injection
    B. XSS scripting
    C. Click jacking
    D. Input validation

  • Question 709:

    A company is trying to decide how to manage hosts in a branch location connected via a slow WAN link. The company desires to provide the same level of performance and functionality to the branch office as it provides to the main campus. The company uses Active Directory for its directory service and host configuration management. The branch location does not have a datacenter, and the physical security posture of the building is weak. Which of the following designs is MOST appropriate for this scenario?

    A. Deploy a branch location Read-Only Domain Controller in the DMZ at the main campus with a two-way trust.
    B. Deploy a corporate Read-Only Domain Controller to the branch location.
    C. Deploy a corporate Domain Controller in the DMZ at the main campus.
    D. Deploy a branch location Read-Only Domain Controller to the branch office location with a one-way trust.
    E. Deploy a corporate Domain Controller to the branch location.
    F. Deploy a branch location Domain Controller to the branch location with a one-way trust.

  • Question 710:

    A developer is determining the best way to improve security within the code being developed. The developer is focusing on input fields where customers enter their credit card details. Which of the following techniques, if implemented in the code, would be the MOST effective in protecting the fields from malformed input?

    A. Client side input validation
    B. Stored procedure
    C. Encrypting credit card details
    D. Regular expression matching

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.