Home / CompTIA / CAS-005 / List of questions

CompTIA CAS-005 Practice Test - Questions Answers, Page 10

Add to Whishlist

List of questions

Question 91

Report

A senior security engineer flags me following log file snippet as hawing likely facilitated an attacker's lateral movement in a recent breach:

CompTIA CAS-005 image Question 91 63875074218475967428773

Which of the following solutions, if implemented, would mitigate the nsk of this issue reoccurnnp?

Become a Premium Member for full access

Unlock Premium Member

Question 92

Report

A security operations engineer needs to prevent inadvertent data disclosure when encrypted SSDs are reused within an enterprise. Which of the following is the most secure way to achieve this goal?

Become a Premium Member for full access

Unlock Premium Member

Question 93

Report

A security engineer is given the following requirements:

* An endpoint must only execute Internally signed applications

* Administrator accounts cannot install unauthorized software.

* Attempts to run unauthorized software must be logged

Which of the following best meets these requirements?

Become a Premium Member for full access

Unlock Premium Member

Question 94

Report

A security analyst is troubleshooting the reason a specific user is having difficulty accessing company resources The analyst reviews the following information:

CompTIA CAS-005 image Question 94 63875074218475967428773

Which of the following is most likely the cause of the issue?

Become a Premium Member for full access

Unlock Premium Member

Question 95

Report

A security analyst received a report that an internal web page is down after a company-wide update to the web browser Given the following error message:

CompTIA CAS-005 image Question 95 63875074218475967428773

Which of the following is the b way to fix this issue?

Become a Premium Member for full access

Unlock Premium Member

Question 96

Report

A security analyst reviews the following report:

CompTIA CAS-005 image Question 96 63875074218491591364653

Which of the following assessments is the analyst performing?

Become a Premium Member for full access

Unlock Premium Member

Question 97

Report

A company's help desk is experiencing a large number of calls from the finance department slating access issues to www bank com The security operations center reviewed the following security logs:

CompTIA CAS-005 image Question 97 63875074218491591364653

Which of the following is most likely the cause of the issue?

Become a Premium Member for full access

Unlock Premium Member

Question 98

Report

A company wants to implement hardware security key authentication for accessing sensitive information systems The goal is to prevent unauthorized users from gaining access with a stolen password Which of the following models should the company implement to bst solve this issue?

Become a Premium Member for full access

Unlock Premium Member

Question 99

Report

A security analyst is reviewing suspicious log-in activity and sees the following data in the SICM:

CompTIA CAS-005 image Question 99 63875074218491591364653

Which of the following is the most appropriate action for the analyst to take?

Become a Premium Member for full access

Unlock Premium Member

Question 100

Report

Which of the following is the security engineer most likely doing?

Become a Premium Member for full access

Unlock Premium Member

Total 198 questions

First

Prev

Next

Last

Go to page: of 20

Question 91 (0)

A senior security engineer flags me following log file snippet as hawing likely facilitated an attacker's lateral movement in a recent breach: Which of the following solutions, if implemented, wo

Question 92 (0)

A security operations engineer needs to prevent inadvertent data disclosure when encrypted SSDs are reused within an enterprise. Which of the following is the most secure way to achieve this goal?

Question 93 (0)

A security engineer is given the following requirements: * An endpoint must only execute Internally signed applications * Administrator accounts cannot install unauthorized software. * Attempts t

Question 94 (0)

A security analyst is troubleshooting the reason a specific user is having difficulty accessing company resources The analyst reviews the following information: Which of the following is most lik

Question 95 (0)

A security analyst received a report that an internal web page is down after a company-wide update to the web browser Given the following error message: Which of the following is the b way to fix

Question 96 (0)

A security analyst reviews the following report: Which of the following assessments is the analyst performing?

Question 97 (0)

A company's help desk is experiencing a large number of calls from the finance department slating access issues to www bank com The security operations center reviewed the following security logs:

Question 98 (0)

A company wants to implement hardware security key authentication for accessing sensitive information systems The goal is to prevent unauthorized users from gaining access with a stolen password Whi

Question 99 (0)

A security analyst is reviewing suspicious log-in activity and sees the following data in the SICM: Which of the following is the most appropriate action for the analyst to take?

Question 100 (0)

Which of the following is the security engineer most likely doing?

Open VPLUS File

Convert VPLUS to PDF

Related questions

A global company's Chief Financial Officer (CFO) receives a phone call from someone claiming to be the Chief Executive Officer (CEO). The caller claims to be stranded and in desperate need of money. The CFO is suspicious, but the caller's voice sounds similar to the CEO's. Which of the following best describes this type of attack?

A security engineer must ensure that sensitive corporate information is not exposed if a company laptop is stolen. Which of the following actions best addresses this requirement?

Which of the following best describes the challenges associated with widespread adoption of homomorphic encryption techniques?

Which of the following best describes the reason PQC preparation is important?

A company is preparing to move a new version of a web application to production. No issues were reported during security scanning or quality assurance in the CI/CD pipeline. Which of the following actions should the company take next?

A cloud engineer wants to configure mail security protocols to support email authenticity and enable the flow of email security information to a third-party platform for further analysis. Which of the following must be configured to achieve these requirements? (Select two).

An external threat actor attacks public infrastructure providers. In response to the attack and during follow-up activities, various providers share information obtained during response efforts. After the attack, energy sector companies share their status and response data: Company SIEM UEBA DLP ISAC Member TIP Integration Time to Detect Time to Respond 1 Yes No Yes Yes Yes 10 minutes 20 minutes 2 Yes Yes Yes Yes No 20 minutes 40 minutes 3 Yes Yes No No Yes 12 minutes 24 minutes Which of the following is the most important issue to address to defend against future attacks?

An organization is prioritizing efforts to remediate or mitigate risks identified during the latest assessment. For one of the risks, a full remediation was not possible, but the organization was able to successfully apply mitigations to reduce the likelihood of the impact. Which of the following should the organization perform next?

An auditor is reviewing the logs from a web application to determine the source of an incident. The web application architecture includes an internet-accessible application load balancer, a number of web servers in a private subnet, application servers, and one database server in a tiered configuration. The application load balancer cannot store the logs. The following are sample log snippets: Web server logs: 192.168.1.10 - - [24/Oct/2020 11:24:34 +05:00] 'GET /bin/bash' HTTP/1.1' 200 453 Safari/536.36 192.168.1.10 - - [24/Oct/2020 11:24:35 +05:00] 'GET / HTTP/1.1' 200 453 Safari/536.36 Application server logs: 24/Oct/2020 11:24:34 +05:00 - 192.168.2.11 - request does not match a known local user. Querying DB 24/Oct/2020 11:24:35 +05:00 - 192.168.2.12 - root path. Begin processing Database server logs: 24/Oct/2020 11:24:34 +05:00 [Warning] 'option read_buffer_size1 unassigned value 0 adjusted to 2048 24/Oct/2020 11:24:35 +05:00 [Warning] CA certificate ca.pem is self-signed. Which of the following should the auditor recommend to ensure future incidents can be traced back to the sources?

Which of the following are risks associated with vendor lock-in? (Select two).

Unlock Premium Member Feature for CAS-005

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

How to open VPLUS file?

Convert VPLUS to PDF (DOCX)