CAS-001 Exam Questions
521 real CAS-001 exam questions with expert-verified answers and explanations. Page 1 of 11.
- Question #1Integration of Computing, Communications and Business Disciplines
speed private research network. Local businesses in the area are seeking sponsorship from (CIO) believes that this is an opportunity to increase revenues and visibility for the com...
ISAinterconnection agreementssecurity documentationnetwork partnership - Question #2Research and Analysis
A security analyst at Company A has been trying to convince the Information Security Officer (ISO) to allocate budget towards the purchase of a new intrusion prevention system (IPS...
IPS justificationthreat intelligencesecurity budgetattack trends - Question #3Enterprise Security
The IT department of a pharmaceutical research company is considering whether the company should allow or block access to social media websites during lunch time. The company is co...
intellectual propertysocial media policyguest networkrisk assessment - Question #4Integration of Computing, Communications and Business Disciplines
A security audit has uncovered a lack of security controls with respect to employees' network account management. Specifically, the audit reveals that employee's network accounts a...
identity managementaccount lifecycleHR processesaccess control - Question #5Technical Integration of Enterprise Components
Which of the following is true about an unauthenticated SAMLv2 transaction?
SAMLfederated identitySSOauthentication flow - Question #6Enterprise Security
A company which manufactures ASICs for use in an IDS wants to ensure that the ASICs' code is not prone to buffer and integer overflows. The ASIC technology is copyrighted and the c...
white box testingblack box testingSDLCbuffer overflow prevention - Question #7Technical Integration of Enterprise Components
As part of the testing phase in the SDLC, a software developer wants to verify that an application is properly handling user error exceptions. Which of the following is the BEST to...
fuzzingexception handlingSDLC testingapplication security - Question #8Enterprise Security
Which of the following is the MOST appropriate control measure for lost mobile devices?
mobile device managementremote wipedata protectionMDM - Question #9Enterprise Security
Which of the following is the MOST cost-effective solution for sanitizing a DVD with sensitive information on it?
data sanitizationmedia disposaloptical mediaphysical destruction - Question #10Technical Integration of Enterprise Components
GET /disp_reports.php?SectionEntered=57&GroupEntered=- 1&report_type=alerts&to_date=01-01- 0101&Run= Run&UserEntered=dsmith&SessionID=5f04189bc&from_date=31-10- 2010&TypesEntered=1...
sensitive data exposureURL parametersweb securityHTTP - Question #11Enterprise Security
Driven mainly by cost, many companies outsource computing jobs which require a large amount of processor cycles over a short duration to cloud providers. This allows the company to...
cloud securitydata remanenceVM isolationon-demand provisioning - Question #12Technical Integration of Enterprise Components
A security administrator needs a secure computing solution to use for all of the company's security audit log storage, and to act as a central server to execute security functions...
server hardeningtrusted OSaudit log storagebastion host - Question #13Enterprise Security
After implementing port security, restricting all network traffic into and out of a network, migrating to IPv6, installing NIDS, firewalls, spam and application filters, a security...
endpoint securityanti-malwarehost-based firewallmulti-factor authentication - Question #14Enterprise Security
A security architect is assigned to a major software development project. The software development team has a history of writing bug prone, inefficient code, with multiple security...
secure coding standardsinput validationerror handlingSDLC - Question #15Technical Integration of Enterprise Components
A number of security incidents have been reported involving mobile web-based code developed by a consulting company. Performing a root cause analysis, the security administrator of...
buffer overflowmobile securitymemory exploitationvulnerability mitigation - Question #16Research and Analysis
A security administrator has been conducting a security assessment of Company XYZ for the past two weeks. All of the penetration tests and other assessments have revealed zero flaw...
social engineeringdata exfiltrationpenetration testingsecurity assessment - Question #17Research and Analysis
mobile device which the Chief Information Officer (CIO) wants to immediately deploy to all employees in the company. The product is commercially available, runs a popular mobile op...
mobile device risk assessmentremote wipeSSD encryptionMDM controls - Question #18Technical Integration of Enterprise Components
The security administrator is worried about possible SPIT attacks against the VoIP system. Which of the following security controls would MOST likely need to be implemented to dete...
VoIP securitySPITSIP traffic analysisSRTP - Question #19Technical Integration of Enterprise Components
The helpdesk is receiving multiple calls about slow and intermittent Internet access from the finance department. The network administrator reviews the tickets and compiles the fol...
ARP spoofingMITM attacknetwork forensicsstatic ARP - Question #20Integration of Computing, Communications and Business Disciplines
On Monday, the Chief Information Officer (CIO) of a state agency received an e-discovery request for the release of all emails sent and received by the agency board of directors fo...
e-discoverydata retention policylegal complianceemail archiving - Question #21Enterprise Security
A company is evaluating a new marketing strategy involving the use of social networking sites to reach its customers. The marketing director wants to be able to report important co...
social media securitymalwarephishingsocial engineering - Question #22Technical Integration of Enterprise Components
A telecommunication company has recently upgraded their teleconference systems to multicast. Additionally, the security team has instituted a new policy which requires VPN to acces...
VPNsplit tunnelingbandwidth utilizationmulticast - Question #23Enterprise Security
An Information Security Officer (ISO) has asked a security team to randomly retrieve discarded computers from the warehouse dumpster. The security team was able to retrieve two old...
hardware decommissioningmedia sanitizationdata disposalpolicy - Question #24Technical Integration of Enterprise Components
Which of the following precautions should be taken to harden network devices in case of VMEscape?
VM escapevirtualization securitynetwork segmentationhypervisor hardening - Question #25Technical Integration of Enterprise Components
Which of the following should be used with caution because of its ability to provide access to block level data instead of file level data?
iSCSIblock-level storageSANstorage protocols - Question #26Enterprise Security
Which of the following can aid a buffer overflow attack to execute when used in the creation of applications?
buffer overflowstandard librariessecure codingapplication security - Question #27Enterprise Security
The Chief Executive Officer (CEO) of a corporation purchased the latest mobile device and wants to connect it to the company's internal network. The Chief Information Security Offi...
mobile device securityencryptionPIN authenticationnon-volatile memory - Question #28Integration of Computing, Communications and Business Disciplines
The Chief Executive Officer (CEO) of a corporation decided to move all email to a cloud computing environment. The Chief Information Security Officer (CISO) was told to research th...
cloud securityemail securitySLANDA - Question #29Research and Analysis
The Chief Executive Officer (CEO) of a corporation purchased the latest mobile device and wants to connect it to the internal network. The Chief Information Security Officer (CISO)...
risk responserisk treatmentmobile securityrisk management - Question #30Enterprise Security
The Chief Executive Officer (CEO) of a corporation purchased the latest mobile device and connected it to the internal network. The CEO proceeded to download sensitive financial do...
incident responsedata breachmobile devicedata handling - Question #31Integration of Computing, Communications and Business Disciplines
An employee was terminated and promptly escorted to their exit interview, after which the employee left the building. It was later discovered that this employee had started a consu...
insider threatdata exfiltrationUSB controlstermination procedures - Question #32Technical Integration of Enterprise Components
A technician states that workstations that are on the network in location B are unable to validate certificates, while workstations that are on the main location A's network are ha...
OCSPcertificate validationPKICRL - Question #33Enterprise Security
A system administrator needs to develop a policy for when an application server is no longer needed. Which of the following policies would need to be developed?
data retention policyserver decommissioninglifecycle managementpolicy development - Question #34Enterprise Security
A web administrator develops a web form for users to respond to the company via a web page. Which of the following should be practiced to avoid a security risk?
input validationXSSSQL injectionweb application security - Question #35Integration of Computing, Communications and Business Disciplines
A large enterprise is expanding through the acquisition of a second corporation. Which of the following should be undertaken FIRST before connecting the networks of the newly forme...
mergers and acquisitionsrisk analysisnetwork integrationdue diligence - Question #36Research and Analysis
The company is considering issuing non-standard tablet computers to executive management. Which of the following is the FIRST step the security manager should perform?
risk analysismobile devicesBYODuse case development - Question #37Technical Integration of Enterprise Components
When authenticating over HTTP using SAML, which of the following is issued to the authenticating user?
SAMLfederated identitySSOassertion ticket - Question #38Enterprise Security
Which of the following activities could reduce the security benefits of mandatory vacations?
mandatory vacationseparation of dutiesfraud detectioninsider threat - Question #39Enterprise Security
A database is hosting information assets with a computed CIA aggregate value of high. The database is located within a secured network zone where there is flow control between the...
privileged accessdatabase securityinsider threatthreat analysis - Question #40Technical Integration of Enterprise Components
An organization recently upgraded its wireless infrastructure to support WPA2 and requires all clients to use this method. After the upgrade, several critical wireless clients fail...
WPA2WEP legacy clientswireless securitynetwork segmentation - Question #41Enterprise Security
The Chief Information Security Officer (CISO) is researching ways to reduce the risk associated with administrative access of six IT staff members while enforcing separation of dut...
role-based access controlseparation of dutiesprivileged access managementadministrative security - Question #42Technical Integration of Enterprise Components
A company has a primary DNS server at address 192.168.10.53 and a secondary server at 192.168.20.53. An administrator wants to secure a company by only allowing secure zone transfe...
DNS securityzone transferTSIGDNS configuration - Question #43Enterprise Security
An employee of a company files a complaint with a security administrator. While sniffing network traffic, the employee discovers that financially confidential emails were passing b...
non-repudiationtransport encryptiondigital signaturesemail security - Question #44Enterprise Security
An administrator of a secure web server has several clients with top security clearance and prefers security over performance. By default, which of the following cipher suites woul...
cipher suites3DESsymmetric encryptioncryptographic performance - Question #45Technical Integration of Enterprise Components
An administrator wants to integrate the Credential Security Support Provider (CredSSP) protocol network level authentication (NLA) into the remote desktop terminal services environ...
CredSSPnetwork level authenticationKerberosremote desktop security - Question #46Research and Analysis
A systems security consultant is hired by Corporation X to analyze the current enterprise network environment and make recommendations for increasing network security. It is the co...
network security assessmentbusiness requirementsthreat analysissecurity planning - Question #47Integration of Computing, Communications and Business Disciplines
The Chief Executive Officer (CEO) has asked a security project manager to provide recommendations on the breakout of tasks for the development of a new product. The CEO thinks that...
security rolestask decompositionsecure development lifecycleproject management - Question #48Enterprise Security
Which of the following is the MOST secure way to ensure third party applications and introduce only acceptable risk?
third-party riskcode reviewapplication securitysupply chain security - Question #49Enterprise Security
A software vendor has had several zero-day attacks against its software, due to previously unknown security defects being exploited by attackers. The attackers have been able to pe...
application sandboxingprivilege separationzero-day mitigationsecure design principles - Question #50Technical Integration of Enterprise Components
A new vendor product has been acquired to replace a legacy perimeter security product. There are significant time constraints due to the existing solution nearing end-of-life with...
security product migrationchange managementperimeter securityrisk management