https://www.lead1pass.com/CompTIA/CAS-002-practice-exam-dumps.html (465 Q&As Dumps, 30%OFF Special Discount: 30free )

NEW QUESTION NO: 6
A company has noticed recently that its corporate information has ended up on an online forum. An investigation has identified that internal employees are sharing confidential corporate information on a daily basis. Which of the following are the MOST effective security controls that can be implemented to stop the above problem? (Select TWO).
A. Review of security policies and procedures
B. Implement DLP on the desktop, email gateway, and web proxies
C. Implement a URL filter to block the online forum
D. Security awareness compliance training for all employees
E. Implement NIDS on the desktop and DMZ networks
Answer: B,D

NEW QUESTION NO: 7
Company XYZ plans to donate 1,000 used computers to a local school. The company has a large research and development section and some of the computers were previously used to store proprietary research.
The security administrator is concerned about data remnants on the donated machines, but the company does not have a device sanitization section in the data handling policy.
Which of the following is the BEST course of action for the security administrator to take?
A. Move forward with the donation, but remove all software license keys from the machines.
B. Reload the machines with an open source operating system and then donate the machines.
C. Delay the donation until a new policy is approved by the Chief Information Officer (CIO), and then donate the machines.
D. Delay the donation until all storage media on the computers can be sanitized.
Answer: D

NEW QUESTION NO: 8
A well-known retailer has experienced a massive credit card breach. The retailer had gone through an audit and had been presented with a potential problem on their network. Vendors were authenticating directly to the retailer's AD servers, and an improper firewall rule allowed pivoting from the AD server to the DMZ where credit card servers were kept. The firewall rule was needed for an internal application that was developed, which presents risk. The retailer determined that because the vendors were required to have site to site VPN's no other security action was taken.
To prove to the retailer the monetary value of this risk, which of the following type of calculations is needed?
A. Quantitative Risk Analysis
B. Qualitative Risk Analysis
C. Residual Risk calculation
D. A cost/benefit analysis
Answer: A

NEW QUESTION NO: 9
Within the company, there is executive management pressure to start advertising to a new target market.
Due to the perceived schedule and budget inefficiencies of engaging a technology business unit to commission a new micro-site, the marketing department is engaging third parties to develop the site in order to meet time-to-market demands. From a security perspective, which of the following options BEST balances the needs between marketing and risk management?
A. The third party should be contractually obliged to perform adequate security activities, and evidence of those activities should be confirmed by the company prior to launch.
B. Outsourcing is a valid option to increase time-to-market. If a security incident occurs, it is not of great concern as the reputational damage will be the third party's responsibility.
C. The company should never outsource any part of the business that could cause a security or privacy incident. It could lead to legal and compliance issues.
D. If the third party has an acceptable record to date on security compliance and is provably faster and cheaper, then it makes sense to outsource in this specific situation.
Answer: A

NEW QUESTION NO: 10
After the install process, a software application executed an online activation process. After a few months, the system experienced a hardware failure. A backup image of the system was restored on a newer revision of the same brand and model device. After the restore, the specialized application no longer works. Which of the following is the MOST likely cause of the problem?
A. The binary files used by the application have been modified by malware.
B. The hash key summary of hardware and installed software no longer match.
C. The restored image backup was encrypted with the wrong key.
D. The application is unable to perform remote attestation due to blocked ports.
Answer: B

NEW QUESTION NO: 11
A finance manager says that the company needs to ensure that the new system can "replay" data, up to the minute, for every exchange being tracked by the investment departments. The finance manager also states that the company's transactions need to be tracked against this data for a period of five years for compliance. How would a security engineer BEST interpret the finance manager's needs?
A. Information digest
B. User requirements
C. Data elements
D. Acceptance testing
E. Compliance standards
F. Data storage
G. System requirements
Answer: B

NEW QUESTION NO: 12
In an effort to minimize costs, the management of a small candy company wishes to explore a cloud service option for the development of its online applications. The company does not wish to invest heavily in IT infrastructure. Which of the following solutions should be recommended?
A. A private PaaS
B. A private SaaS
C. A public IaaS
D. A public SaaS
E. A public PaaS
F. A private IaaS
Answer: E

NEW QUESTION NO: 13
Which of the following represents important technical controls for securing a SAN storage infrastructure?
(Select TWO).
A. Port mapping
B. Port scanning
C. Synchronous copy of data
D. LUN masking/mapping
E. Data de-duplication
F. RAID configuration
G. Storage pool space allocation
Answer: A,D

NEW QUESTION NO: 14
A security consultant is hired by a company to determine if an internally developed web application is vulnerable to attacks. The consultant spent two weeks testing the application, and determines that no vulnerabilities are present. Based on the results of the tools and tests available, which of the following statements BEST reflects the security status of the application?
A. There are no vulnerabilities in the application.
B. The company's software lifecycle management improved the security of the application.
C. The company should deploy a web application firewall to ensure extra security.
D. There are no known vulnerabilities at this time.
Answer: D

NEW QUESTION NO: 15
A company has implemented data retention policies and storage quotas in response to their legal department's requests and the SAN administrator's recommendation. The retention policy states all email data older than 90 days should be eliminated. As there are no technical controls in place, users have been instructed to stick to a storage quota of 500Mb of network storage and 200Mb of email storage. After being presented with an e- discovery request from an opposing legal council, the security administrator discovers that the user in the suit has 1Tb of files and 300Mb of email spanning over two years. Which of the following should the security administrator provide to opposing council?
A. Delete email over the policy threshold and hand over the remaining emails and all of the files.
B. Delete files and email exceeding policy thresholds and turn over the remaining files and email.
C. Provide the first 200Mb of e-mail and the first 500Mb of files as per policy.
D. Provide the 1Tb of files on the network and the 300Mb of email files regardless of age.
Answer: D

NEW QUESTION NO: 16
A vulnerability research team has detected a new variant of a stealth Trojan that disables itself when it detects that it is running on a virtualized environment. The team decides to use dedicated hardware and local network to identify the Trojan's behavior and the remote DNS and IP addresses it connects to. Which of the following tools is BEST suited to identify the DNS and IP addresses the stealth Trojan communicates with after its payload is decrypted?
A. Firewall logs
B. HIDS
C. Disassembler
D. Vulnerability scanner
E. Packet analyzer
Answer: E