CompTIA CAS-005 Practice Test - Questions Answers, Page 9

A security engineer performed a code scan that resulted in many false positives. The security engineer must find a solution that improves the quality of scanning results before application deployment. Which of the following is the best solution?

A security engineer needs 10 secure the OT environment based on me following requirements

* Isolate the OT network segment

* Restrict Internet access.

* Apply security updates two workstations

* Provide remote access to third-party vendors

Which of the following design strategies should the engineer implement to best meet these requirements?

A news organization wants to implement workflows that allow users to request that untruthful data be retraced and scrubbed from online publications to comply with the right to be forgotten Which of the following regulations is the organization most likely trying to address'

An organization wants to implement a platform to better identify which specific assets are affected by a given vulnerability. Which of the following components provides the best foundation to achieve this goal?

A cloud engineer needs to identify appropriate solutions to:

* Provide secure access to internal and external cloud resources.

* Eliminate split-tunnel traffic flows.

* Enable identity and access management capabilities.

Which of the following solutions arc the most appropriate? (Select two).

During a gap assessment, an organization notes that OYOD usage is a significant risk. The organization implemented administrative policies prohibiting BYOD usage However, the organization has not implemented technical controls to prevent the unauthorized use of BYOD assets when accessing the organization's resources. Which of the following solutions should the organization implement to b reduce the risk of OYOD devices? (Select two).

Audit findings indicate several user endpoints are not utilizing full disk encryption During me remediation process, a compliance analyst reviews the testing details for the endpoints and notes the endpoint device configuration does not support full disk encryption Which of the following is the most likely reason me device must be replaced'

A global manufacturing company has an internal application mat is critical to making products This application cannot be updated and must Be available in the production area A security architect is implementing security for the application. Which of the following best describes the action the architect should take-?

A software company deployed a new application based on its internal code repository Several customers are reporting anti-malware alerts on workstations used to test the application Which of the following is the most likely cause of the alerts?