1. Home
  2. CompTIA
  3. RC0-C02

CompTIA RC0-C02 Online Practice Questions and Exam Preparation

RC0-C02 Exam Details

  • Exam Code
    :RC0-C02
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP) Recertification Exam for Continuing Education
  • Certification
    :CompTIA Advanced Security Practitioner
  • Vendor
    :CompTIA
  • Total Questions
    :308 Q&As
  • Last Updated
    :May 26, 2026

CompTIA RC0-C02 Online Questions & Answers

  • Question 151:

    An administrator is implementing a new network-based storage device. In selecting a storage protocol, the administrator would like the data in transit's integrity to be the most important concern. Which of the following protocols meets these needs by implementing either AES-CMAC or HMAC-SHA256 to sign data?

    A. SMB
    B. NFS
    C. FCoE
    D. iSCSI

  • Question 152:

    Which of the following activities could reduce the security benefits of mandatory vacations?

    A. Have a replacement employee run the same applications as the vacationing employee.
    B. Have a replacement employee perform tasks in a different order from the vacationing employee.
    C. Have a replacement employee perform the job from a different workstation than the vacationing employee.
    D. Have a replacement employee run several daily scripts developed by the vacationing employee.

  • Question 153:

    The Chief Executive Officer (CEO) of a small start-up company wants to set up offices around the country for the sales staff to generate business. The company needs an effective communication solution to remain in constant contact with each other, while maintaining a secure business environment. A junior-level administrator suggests that the company and the sales staff stay connected via free social media. Which of the following decisions is BEST for the CEO to make?

    A. Social media is an effective solution because it is easily adaptable to new situations.
    B. Social media is an ineffective solution because the policy may not align with the business.
    C. Social media is an effective solution because it implements SSL encryption.
    D. Social media is an ineffective solution because it is not primarily intended for business applications.

  • Question 154:

    An external penetration tester compromised one of the client organization's authentication servers and retrieved the password database. Which of the following methods allows the penetration tester to MOST efficiently use any obtained administrative credentials on the client organization's other systems, without impacting the integrity of any of the systems?

    A. Use the pass the hash technique
    B. Use rainbow tables to crack the passwords
    C. Use the existing access to change the password
    D. Use social engineering to obtain the actual password

  • Question 155:

    An administrator wishes to replace a legacy clinical software product as it has become a security risk. The legacy product generates $10,000 in revenue a month. The new software product has an initial cost of $180,000 and a yearly maintenance of $2,000 after the first year. However, it will generate $15,000 in revenue per month and be more secure. How many years until there is a return on investment for this new package?

    A. 1
    B. 2
    C. 3
    D. 4

  • Question 156:

    An IT manager is working with a project manager to implement a new ERP system capable of transacting data between the new ERP system and the legacy system. As part of this process, both parties must agree to the controls utilized to secure data connections between the two enterprise systems. This is commonly documented in which of the following formal documents?

    A. Memorandum of Understanding
    B. Information System Security Agreement
    C. Interconnection Security Agreement
    D. Interoperability Agreement
    E. Operating Level Agreement

  • Question 157:

    The helpdesk manager wants to find a solution that will enable the helpdesk staff to better serve company employees who call with computer-related problems. The helpdesk staff is currently unable to perform effective troubleshooting and relies on callers to describe their technology problems. Given that the helpdesk staff is located within the company headquarters and 90% of the callers are telecommuters, which of the following tools should the helpdesk manager use to make the staff more effective at troubleshooting while at the same time reducing company costs? (Select TWO).

    A. Web cameras
    B. Email
    C. Instant messaging
    D. BYOD
    E. Desktop sharing
    F. Presence

  • Question 158:

    The Linux server at Company A hosts a graphical application widely used by the company designers. One designer regularly connects to the server from a Mac laptop in the designer's office down the hall. When the security engineer learns of this it is discovered the connection is not secured and the password can easily be obtained via network sniffing. Which of the following would the security engineer MOST likely implement to secure this connection?

    Linux Server: 192.168.10.10/24

    Mac Laptop: 192.168.10.200/24

    A. From the server, establish an SSH tunnel to the Mac and VPN to 192.168.10.200.
    B. From the Mac, establish a remote desktop connection to 192.168.10.10 using Network Layer Authentication and the CredSSP security provider.
    C. From the Mac, establish a VPN to the Linux server and connect the VNC to 127.0.0.1.
    D. From the Mac, establish a SSH tunnel to the Linux server and connect the VNC to 127.0.0.1.

  • Question 159:

    A Chief Information Security Officer (CISO) has requested that a SIEM solution be implemented. The CISO wants to know upfront what the projected TCO would be before looking further into this concern. Two vendor proposals have been

    received:

    Vendor A: product-based solution which can be purchased by the pharmaceutical company.

    Capital expenses to cover central log collectors, correlators, storage and management consoles expected to be $150,000. Operational expenses are expected to be a 0.5 full time employee (FTE) to manage the solution, and 1 full time

    employee to respond to incidents per year.

    Vendor B: managed service-based solution which can be the outsourcer for the pharmaceutical company's needs.

    Bundled offering expected to be $100,000 per year.

    Operational expenses for the pharmaceutical company to partner with the vendor are expected to be a 0.5 FTE per year.

    Internal employee costs are averaged to be $80,000 per year per FTE. Based on calculating TCO of the two vendor proposals over a 5 year period, which of the following options is MOST accurate?

    A. Based on cost alone, having an outsourced solution appears cheaper.
    B. Based on cost alone, having an outsourced solution appears to be more expensive.
    C. Based on cost alone, both outsourced an in-sourced solutions appear to be the same.
    D. Based on cost alone, having a purchased product solution appears cheaper.

  • Question 160:

    A system worth $100,000 has an exposure factor of eight percent and an ARO of four. Which of the following figures is the system's SLE?

    A. $2,000
    B. $8,000
    C. $12,000
    D. $32,000

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your RC0-C02 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.