1. Home
  2. CompTIA
  3. CAS-003

CompTIA CAS-003 Online Practice Questions and Exam Preparation

CAS-003 Exam Details

  • Exam Code
    :CAS-003
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :791 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-003 Online Questions & Answers

  • Question 541:

    A security analyst is troubleshooting a scenario in which an operator should only be allowed to reboot remote hosts but not perform other activities. The analyst inspects the following portions of different configuration files:

    Configuration file 1:

    Operator ALL=/sbin/reboot

    Configuration file 2:

    Command="/sbin/shutdown now", no-x11-forwarding, no-pty, ssh-dss

    Configuration file 3:

    Operator:x:1000:1000::/home/operator:/bin/bash

    Which of the following explains why an intended operator cannot perform the intended action?

    A. The sudoers file is locked down to an incorrect command
    B. SSH command shell restrictions are misconfigured
    C. The passwd file is misconfigured
    D. The SSH command is not allowing a pty session

  • Question 542:

    A manufacturing company recently recovered from an attack on its ICS devices. It has since reduced the attack surface by isolating the affected components. The company now wants to implement detection capabilities. It is considering a system that is based on machine learning. Which of the following features would BEST describe the driver to adopt such nascent technology over mainstream commercial IDSs?

    A. Trains on normal behavior and identifies deviations therefrom
    B. Identifies and triggers upon known bad signatures and behaviors
    C. Classifies traffic based on logical protocols and messaging formats
    D. Automatically reconfigures ICS devices based on observed behavior

  • Question 543:

    A company is trying to resolve the following issues related to its web servers and Internet presence:

    1.

    The company's security rating declined on multiple occasions when it failed to renew a TLS certificate on one or more infrequently used web servers

    2.

    The company is running out of public IPs assigned by its ISP

    3.

    The company is implementing a WAF. and the WAF vendor charges by back-end hosts to which the WAF routes

    Which of the following solutions will help the company mitigate these issues? (Select TWO).

    A. Use a DMZ architecture
    B. Implement reverse proxy servers
    C. Use an automated CA service API for certificate renewal
    D. Work with the company's ISP to configure BGP
    E. Deploy IPv6 for external-facing servers
    F. Implement self-signed certificates and disable trust verification.

  • Question 544:

    A company wants to extend its help desk availability beyond business hours. The Chief Information Officer (CIO) decides to augment the help desk with a third-party service that will answer calls and provide Tier 1 problem resolution, such as password resets and remote assistance. The security administrator implements the following firewall change:

    The administrator provides the appropriate path and credentials to the third-party company. Which of the following technologies is MOST likely being used to provide access to the third company?

    A. LDAP
    B. WAYF
    C. OpenID
    D. RADIUS
    E. SAML

  • Question 545:

    A Chief Information Security Officer (CISO) of a large financial institution undergoing an IT transformation program wants to embed security across the business rapidly and across as many layers of the business as possible to achieve quick wins and reduce risk to the organization. Which of the following business areas should the CISO target FIRST to best meet the objective?

    A. Programmers and developers should be targeted to ensure secure coding practices, including automated code reviews with remediation processes, are implemented immediately.
    B. Human resources should be targeted to ensure all new employees undertake security awareness and compliance training to reduce the impact of phishing and ransomware attacks.
    C. The project management office should be targeted to ensure security is managed and included at all levels of the project management cycle for new and in-flight projects.
    D. Risk assurance teams should be targeted to help identify key business unit security risks that can be aggregated across the organization to produce a risk posture dashboard for executive management.

  • Question 546:

    A large, public university has recently been experiencing an increase in ransomware attacks against computers connected to its network. Security engineers have discovered various staff members receiving seemingly innocuous files in their email that are being run. Which of the following would BEST mitigate this attack method?

    A. Improving organizations email filtering
    B. Conducting user awareness training
    C. Upgrading endpoint anti-malware software
    D. Enabling application whitelisting

  • Question 547:

    The Chief Information Officer (CIO) wants to increase security and accessibility among the organization's cloud SaaS applications. The applications are configured to use passwords, and two-factor authentication is not provided natively. Which of the following would BEST address the CIO's concerns?

    A. Procure a password manager for the employees to use with the cloud applications.
    B. Create a VPN tunnel between the on-premises environment and the cloud providers.
    C. Deploy applications internally and migrate away from SaaS applications.
    D. Implement an IdP that supports SAML and time-based, one-time passwords.

  • Question 548:

    The Information Security Officer (ISO) is reviewing new policies that have been recently made effective and now apply to the company. Upon review, the ISO identifies a new requirement to implement two-factor authentication on the company's wireless system. Due to budget constraints, the company will be unable to implement the requirement for the next two years. The ISO is required to submit a policy exception form to the Chief Information Officer (CIO). Which of the following are MOST important to include when submitting the exception form? (Select THREE).

    A. Business or technical justification for not implementing the requirements.
    B. Risks associated with the inability to implement the requirements.
    C. Industry best practices with respect to the technical implementation of the current controls.
    D. All sections of the policy that may justify non-implementation of the requirements.
    E. A revised DRP and COOP plan to the exception form.
    F. Internal procedures that may justify a budget submission to implement the new requirement.
    G. Current and planned controls to mitigate the risks.

  • Question 549:

    The Chief Executive Officer (CEO) of a small startup company has an urgent need for a security policy and assessment to address governance, risk management, and compliance. The company has a resource-constrained IT department, but has no information security staff. The CEO has asked for this to be completed in three months.

    Which of the following would be the MOST cost-effective solution to meet the company's needs?

    A. Select one of the IT personnel to obtain information security training, and then develop all necessary policies and documents in-house.
    B. Accept all risks associated with information security, and then bring up the issue again at next year's annual board meeting.
    C. Release an RFP to consultancy firms, and then select the most appropriate consultant who can fulfill the requirements.
    D. Hire an experienced, full-time information security team to run the startup company's information security department.

  • Question 550:

    A security analyst is classifying data based on input from data owners and other stakeholders. The analyst has identified three data types:

    Financially sensitive data Project data Sensitive project data

    The analyst proposes that the data be protected in two major groups, with further access control separating the financially sensitive data from the sensitive project data. The normal project data will be stored in a separate, less secure location. Some stakeholders are concerned about the recommended approach and insist that commingling data from different sensitive projects would leave them vulnerable to industrial espionage.

    Which of the following is the BEST course of action for the analyst to recommend?

    A. Conduct a quantitative evaluation of the risks associated with commingling the data and reject or accept the concerns raised by the stakeholders.
    B. Meet with the affected stakeholders and determine which security controls would be sufficient to address the newly raised risks.
    C. Use qualitative methods to determine aggregate risk scores for each project and use the derived scores to more finely segregate the data.
    D. Increase the number of available data storage devices to provide enough capacity for physical separation of non-sensitive project data.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-003 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.