CompTIA CAS-004 Online Practice Questions and Exam Preparation

CompTIA CAS-004 Online Questions & Answers

• Question 121:

  A company's Chief Information Security Officer (CISO) is working with the product owners to perform a business impact assessment. The product owners provide feedback related to the critically of various business processes, personal, and technologies. Transitioning into risk assessment activities, which of the following types of information should the CISO require to determine the proper risk ranking? (Select TWO).

  A. Trend analysis
  B. Likelihood
  C. TCO
  D. Compensating controls
  E. Magnitude
  F. ROI
  B. Likelihood
  E. Magnitude

  ---

  Explanation

  Likelihood: How probable a risk is to occur. Magnitude (Impact): The potential damage or effect of that risk.

• Question 122:

  Multiple users have reported that an internal website's status is listed as insecure because the TLS certificate has expired. Although a new certificate was generated, this issue has become a common occurrence throughout the year for multiple websites. Which of the following best prevents recurrence of this issue?

  A. OCSP responder
  B. Life-cycle management
  C. Wildcard certificates
  D. Certificate pinning
  B. Life-cycle management

  ---

  Explanation

• Question 123:

  An organization has a secure manufacturing facility that is approximately 10mi (16km) away from its corporate headquarters. The organization's management team is concerned about being able to track personnel who utilize the facility.

  Which of the following would best help to prevent staff from being tracked?

  A. Ensuring that all staff use covered parking so they cannot be seen from outside the perimeter.
  B. Configuring geofencing to disable mobile devices and wearable devices near the secure facility.
  C. Constructing a tunnel between headquarters and the facility to allow more secure access.
  D. Enforcing physical security controls like access control vestibules and appropriate fencing.
  B. Configuring geofencing to disable mobile devices and wearable devices near the secure facility.

  ---

  Explanation

  Geofencing to disable mobile and wearable devices prevents the tracking of staff by disabling GPS and other location-based services. This measure aligns with CASP+ objective 3.2, which includes protecting sensitive facilities against surveillance and unauthorized tracking.

• Question 124:

  A company's SOC has received threat intelligence about an active campaign utilizing a specific vulnerability. The company would like to determine whether it is vulnerable to this active campaign. Which of the following should the company use to make this determination?

  A. Threat hunting
  B. A system penetration test
  C. Log analysis within the SIEM tool
  D. The Cyber Kill Chain
  B. A system penetration test

  ---

  Explanation

• Question 125:

  A company implements the following access control methodology based on the following data classifications:

  

  The Chief Information Security Officer (CISO) wants to implement an additional layer of access control based on the geographic location of the underlying system that processes and stores data. The additional layer will be added to the existing access control system. Which of the following components must be implemented to achieve these goals? (Choose two.)

  A. Tagging
  B. Attribute-based access control
  C. Role-based access control
  D. Groups
  E. Tokenization
  F. Digital rights management
  A. Tagging
  B. Attribute-based access control

  ---

  Explanation

• Question 126:

  A company's IT department currently performs traditional patching, and the servers have a significant longevity that may span over five years. A security architect is moving the company toward an immune server architecture in which servers are replaced rather than patched. Instead of having static servers for development, test, and production, the severs will move from environment to environment dynamically. Which of the following are required to move to this type of architecture? (Select Two.)

  A. Network segmentation
  B. Forward proxy
  C. Netflow
  D. Load balancers
  E. Automated deployments
  D. Load balancers
  E. Automated deployments

  ---

  Explanation

• Question 127:

  A company is migrating from company-owned phones to a BYOD strategy for mobile devices. The pilot program will start with the executive management team and be rolled out to the rest of the staff in phases. The company's Chief Financial Officer loses a phone multiple times a year.

  Which of the following will MOST likely secure the data on the lost device?

  A. Require a VPN to be active to access company data.
  B. Set up different profiles based on the person's risk.
  C. Remotely wipe the device.
  D. Require MFA to access company applications.
  C. Remotely wipe the device.

  ---

  Explanation

• Question 128:

  A software company is developing an application in which data must be encrypted with a cipher that requires the following:

  1.Initialization vector

  2.Low latency

  3.Suitable for streaming

  Which of the following ciphers should the company use?

  A. Cipher feedback
  B. Cipher block chaining message authentication code
  C. Cipher block chaining
  D. Electronic codebook
  C. Cipher block chaining

  ---

  Explanation

  https://www.sciencedirect.com/topics/computer-science/symmetric-cipher

• Question 129:

  A security architect updated the security policy to require a proper way to verify that packets received between two parties have not been tampered with and the connection remains private. Which of the following cryptographic techniques can be used to ensure the security policy is being enforced properly?

  A. MD5-based envelope method
  B. HMAC_SHA256
  C. PBKDF2
  D. PGP
  B. HMAC_SHA256

  ---

  Explanation

• Question 130:

  A company with only U S -based customers wants to allow developers from another country to work on the company's website However, the company plans to block normal internet traffic from the other country Which of the following strategies should the company use to accomplish this objective? (Select two).

  A. Block foreign IP addresses from accessing the website
  B. Have the developers use the company's VPN
  C. Implement a WAP for the website
  D. Give the developers access to a jump box on the network
  E. Employ a reverse proxy for the developers
  F. Use NAT to enable access for the developers
  B. Have the developers use the company's VPN
  D. Give the developers access to a jump box on the network

  ---

  Explanation

  Having developers use the company's VPN can provide them with secure access to the network while still allowing the company to block normal internet traffic from the other country. A jump box serves as a secure entry point for administrators or in this case, developers, to connect before launching any administrative tasks or accessing further areas of the network. This setup maintains security while still providing necessary access.