CAS-004 Exam Details

  • Exam Code
    :CAS-004
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :792 Q&As
  • Last Updated
    :Jul 09, 2026

CompTIA CAS-004 Online Questions & Answers

  • Question 31:

    An organization requires a contractual document that includes

    1.An overview of what is covered

    2.Goals and objectives

    3.Performance metrics for each party

    4.A review of how the agreement is managed by all parties

    Which of the following BEST describes this type of contractual document?

    A. SLA
    B. BAA
    C. NDA
    D. ISA

  • Question 32:

    While traveling to another state, the Chief Financial Officer (CFO) forgot to submit payroll for the company The CFO quickly gained access to the corporate network through the high-speed wireless network provided by the hotel and

    completed the task. Upon returning from the business trip, the CFO was told no one received their weekly pay due to a malware attack on the system.

    Which of the following is the MOST likely cause of the secunty breach?

    A. The security manager did not enforce automatic VPN connection.
    B. The company's server did not have endpoint security enabled.
    C. The hotel did not require a wireless password to authenticate.
    D. The laptop did not have the host-based firewall properly configured.

  • Question 33:

    A small company needs to reduce its operating costs. vendors have proposed solutions, which all focus on management of the company's website and services. The Chief information Security Officer (CISO) insist all available resources in the proposal must be dedicated, but managing a private cloud is not an option. Which of the following is the BEST solution for this company?

    A. Community cloud service model
    B. Multinency SaaS
    C. Single-tenancy SaaS
    D. On-premises cloud service model

  • Question 34:

    A security analyst has been tasked with providing key information in the risk register. Which of the following outputs or results would be used to BEST provide the information needed to determine the security posture for a risk decision? (Choose two.)

    A. Password cracker
    B. SCAP scanner
    C. Network traffic analyzer
    D. Vulnerability scanner
    E. Port scanner
    F. Protocol analyzer

  • Question 35:

    A cybersecurity analyst discovered a private key that could have been exposed.

    Which of the following is the BEST way for the analyst to determine if the key has been compromised?

    A. HSTS
    B. CRL
    C. CSRs
    D. OCSP

  • Question 36:

    All staff at a company have started working remotely due to a global pandemic. To transition to remote work, the company has migrated to SaaS collaboration tools. The human resources department wants to use these tools to process sensitive information but is concerned the data could be:

    1.Leaked to the media via printing of the documents

    2.Sent to a personal email address

    3.Accessed and viewed by systems administrators

    4.Uploaded to a file storage site

    Which of the following would mitigate the department's concerns?

    A. Data loss detection, reverse proxy, EDR, and PGP
    B. VDI, proxy, CASB, and DRM
    C. Watermarking, forward proxy, DLP, and MFA
    D. Proxy, secure VPN, endpoint encryption, and AV

  • Question 37:

    SIMULATION

    A product development team has submitted code snippets for review pnor to release INSTRUCTIONS.

    Analyze the code snippets and then select one vulnerability and one fix for each code snippet If at any time you would like to bang back the initial state of the simulation, please click the Reset All button.

    A. Check the answer in explanation below.
    B. PlaceHolder
    C. PlaceHolder
    D. PlaceHolder

  • Question 38:

    A local government that is investigating a data exfiltration claim was asked to review the fingerprint of the malicious user's actions. An investigator took a forensic image of the VM and downloaded the image to a secured USB drive to share with the government.

    Which of the following should be taken into consideration during the process of releasing the drive to the government?

    A. Encryption in transit
    B. Legal issues
    C. Chain of custody
    D. Order of volatility
    E. Key exchange

  • Question 39:

    A customer reports being unable to connect to a website at www.test.com to consume services. The customer notices the web application has the following published cipher suite:

    Which of the following is the MOST likely cause of the customer's inability to connect?

    A. Weak ciphers are being used.
    B. The public key should be using ECDSA.
    C. The default should be on port 80.
    D. The server name should be test.com.

  • Question 40:

    A network architect is designing a new SD-WAN architecture to connect all local sites to a central hub site. The hub is then responsible for redirecting traffic to public cloud and datacenter applications. The SD-WAN routers are managed through a SaaS, and the same security policy is applied to staff whether working in the office or at a remote location. The main requirements are the following:

    1.The network supports core applications that have 99.99% uptime.

    2.Configuration updates to the SD-WAN routers can only be initiated from the management service.

    3.Documents downloaded from websites must be scanned for malware.

    Which of the following solutions should the network architect implement to meet the requirements?

    A. Reverse proxy, stateful firewalls, and VPNs at the local sites
    B. IDSs, WAFs, and forward proxy IDS
    C. DoS protection at the hub site, mutual certificate authentication, and cloud proxy
    D. IPSs at the hub, Layer 4 firewalls, and DLP

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-004 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.