CAS-002 Exam Questions
884 real CAS-002 exam questions with expert-verified answers and explanations. Page 15 of 18.
- Question #713Enterprise Security
A newly-hired Chief Information Security Officer (CISO) is faced with improving security for a company with low morale and numerous disgruntled employees. After reviewing the situa...
technical controlsinsider threatsecurity policyaccess management - Question #714Technical Integration of Enterprise Components
A new vendor product has been acquired to replace a legacy perimeter security product. There are significant time constraints due to the existing solution nearing end-of-life with...
change managementsecurity migrationend-of-life systemssecurity continuity - Question #715Technical Integration of Enterprise Components
The security administrator reports that the physical security of the Ethernet network has been breached, but the fibre channel storage network was not breached. Why might this stil...
FCoEiSCSIstorage network securitynetwork convergence - Question #716Research and Analysis
When Company A and Company B merged, the network security administrator for Company A was tasked with joining the two networks. Which of the following should be done FIRST?
vulnerability assessmentnetwork mergersecurity due diligenceacquisition security - Question #717Technical Integration of Enterprise Components
An organization recently upgraded its wireless infrastructure to support WPA2 and requires all clients to use this method. After the upgrade, several critical wireless clients fail...
WEP legacyWPA2wireless segmentationnetwork security - Question #718Enterprise Security
A software vendor has had several zero-day attacks against its software, due to previously unknown security defects being exploited by attackers. The attackers have been able to pe...
application sandboxingzero-day attacksprivilege separationsecure design - Question #719Research and Analysis
The helpdesk department desires to roll out a remote support application for internal use on all company computers. This tool should allow remote desktop sharing, system log gather...
risk managementremote access accountabilityRFQ evaluationvendor assessment - Question #720Integration of Computing, Communications and Business Disciplines
A mature organization with legacy information systems has incorporated numerous new processes and dependencies to manage security as its networks and infrastructure are modernized....
Agile methodologySDLSDLCrequirements management - Question #721Technical Integration of Enterprise Components
Noticing latency issues at its connection to the Internet, a company suspects that it is being targeted in a Distributed Denial of Service attack. A security analyst discovers nume...
NTP amplificationDDoS mitigationmonlistnetwork availability - Question #722Technical Integration of Enterprise Components
A network administrator with a company's NSP has received a CERT alert for targeted adversarial behavior at the company. In addition to the company's physical security, which of th...
HIDSport scanningintrusion detectionphysical breach detection - Question #723Integration of Computing, Communications and Business Disciplines
A company has decided to move to an agile software development methodology. The company gives all of its developers security training. After a year of agile, a management review fi...
Agile securitysecurity requirementssprint securitySDLC - Question #724Integration of Computing, Communications and Business Disciplines
A security administrator was recently hired in a start-up company to represent the interest of security and to assist the network team in improving security in the company. The sal...
security awarenessFAQ developmentsales team trainingsecurity communication - Question #725Integration of Computing, Communications and Business Disciplines
A company wishes to purchase a new security appliance. A security administrator has extensively researched the appliances, and after presenting security choices to the company's ma...
procurementRFQsecurity appliancevendor selection - Question #726Technical Integration of Enterprise Components
A security company is developing a new cloud-based log analytics platform. Its purpose is to allow: - Customers to upload their log files to the "big data" platform - Customers to...
multi-tenancyRBACAPI securitycloud data isolation - Question #727Enterprise Security
A new web based application has been developed and deployed in production. A security engineer decides to use an HTTP interceptor for testing the application. Which of the followin...
HTTP interceptorinput validationweb application testingclient-side controls - Question #728Enterprise Security
A large hospital has implemented BYOD to allow doctors and specialists the ability to access patient medical records on their tablets. The doctors and specialists access patient re...
BYODdata privacykeyloggingmobile device security - Question #729Integration of Computing, Communications and Business Disciplines
Which of the following is a set of interactive telecommunication technologies which allow two or more locations to interact via two-way video and audio transmissions simultaneously...
video conferencingtelecommunicationscollaboration tools - Question #730Technical Integration of Enterprise Components
In which of the following attacks does an attacker intercept call-signaling SIP message traffic and masquerade as the calling party to the called party and vice-versa?
VoIP securitySIPman-in-the-middlecall signaling - Question #731Enterprise Security
Consider the following scenario. A user receive an email with a link to a video about a news item, but another valid page, for instance a product page on ebay.com, can be hidden on...
clickjackingUI redressingweb attackssocial engineering - Question #732Enterprise Security
Which of the following statements are true about OCSP and CRL? Each correct answer represents a complete solution. Choose all that apply.
OCSPCRLcertificate validationPKI - Question #733Enterprise Security
An organization s network uses public keys for message encryption. Which of the following manages security credentials in the network and issues certificates to confirm the identit...
Certificate AuthorityPKIdigital certificatespublic key - Question #734Technical Integration of Enterprise Components
Which of the following protocols is used extensively in communication and entertainment systems that involve streaming media, such as telephony, video teleconference applications a...
RTPstreaming mediaVoIP protocolsmultimedia transport - Question #735Integration of Computing, Communications and Business Disciplines
Which of the following is an approximate of the average or mean time until a component's first failure or disruption in the operation of the product, process, procedure, or design...
MTFMTBFreliability metricsfailure analysis - Question #736Enterprise Security
The Security Development Lifecycle (SDL) consists of various security practices that are grouped under seven phases. Which of the following security practices are included in the R...
SDLrequirements phasebug barssecurity risk assessment - Question #737Technical Integration of Enterprise Components
Which of the following components of a VoIP network is frequently used to bridge video conferencing connections?
MCUVoIPvideo conferencingmultipoint control unit - Question #738Technical Integration of Enterprise Components
Which technology can be used to help ensure the efficient transport of VoIP traffic?
QoSVoIPtraffic prioritizationnetwork performance - Question #739Enterprise Security
An administrator wants to enable policy based flexible mandatory access controls on an open source OS to prevent abnormal application modifications or executions. Which of the foll...
SELinuxmandatory access controlOS hardeningMAC policy - Question #740Enterprise Security
A user has a laptop configured with multiple operating system installations. The operating systems are all installed on a single SSD, but each has its own partition and logical vol...
full disk encryptionpartition encryptionmulti-OSdata confidentiality - Question #741Enterprise Security
After being notified of an issue with the online shopping cart, where customers are able to arbitrarily change the price of listed items, a programmer analyzes the following piece...
TOCTOUrace conditionweb application securitytemporary files - Question #742Technical Integration of Enterprise Components
The administrator is troubleshooting availability issues on an FCoE-based storage array that uses deduplication. The single controller in the storage array has failed, so the admin...
FCoEstorage compatibilitydeduplicationdata availability - Question #743Enterprise Security
A security administrator notices the following line in a server's security log: <input name='credentials' type='TEXT' value='" + ='document.cookie</scri pt>') + "'; The administrat...
XSSWAFweb application securityattack mitigation - Question #744Technical Integration of Enterprise Components
A popular commercial virtualization platform allows for the creation of virtual hardware. To virtual machines, this virtual hardware is indistinguishable from real hardware. By imp...
TPMvirtualizationchain of trusttrusted computing - Question #745Technical Integration of Enterprise Components
An organization is concerned with potential data loss in the event of a disaster, and created a backup datacenter as a mitigation strategy. The current storage method is a single N...
SAN replicationNASdisaster recoverydata availability - Question #746Enterprise Security
An application present on the majority of an organization's 1,000 systems is vulnerable to a buffer overflow attack. Which of the following is the MOST comprehensive way to resolve...
buffer overflowpatch managementvulnerability remediationHIPS - Question #747Technical Integration of Enterprise Components
A security administrator wants to deploy a dedicated storage solution which is inexpensive, can natively integrate with AD, allows files to be selectively encrypted and is suitable...
NASActive Directory integrationstorage solutionsselective encryption - Question #748Enterprise Security
A security administrator wants to prevent sensitive data residing on corporate laptops and desktops from leaking outside of the corporate network. The company has already implement...
DLPdata leakage preventionfull-tunnel VPNendpoint protection - Question #749Enterprise Security
Which of the following describes a risk and mitigation associated with cloud data storage?
cloud storageshared tenancydata leakagecloud security risks - Question #750Research and Analysis
An insurance company is looking to purchase a smaller company in another country. Which of the following tasks would the security administrator perform as part of the security due...
security due diligenceM&A securitypolicy reviewrisk assessment - Question #751Enterprise Security
A new piece of ransomware got installed on a company's backup server which encrypted the hard drives containing the OS and backup application configuration but did not affect the d...
ransomwarebackup recoveryincident responsedata restoration - Question #752Research and Analysis
A security analyst has been asked to develop a quantitative risk analysis and risk assessment for the company's online shopping application. Based on heuristic information from the...
quantitative risk analysisALEROI on controlsDoS mitigation - Question #753Integration of Computing, Communications and Business Disciplines
A security manager for a service provider has approved two vendors for connections to the service provider backbone. One vendor will be providing authentication services for its pa...
ISAthird-party agreementsinterconnectionservice provider - Question #754Integration of Computing, Communications and Business Disciplines
A large enterprise acquires another company which uses antivirus from a different vendor. The CISO has requested that data feeds from the two different antivirus platforms be combi...
GRCantivirus managementsecurity metricsenterprise visibility - Question #755Research and Analysis
Which of the following provides the BEST risk calculation methodology?
risk calculationquantitative riskthreat modelingrisk methodology - Question #756Enterprise Security
An assessor identifies automated methods for identifying security control compliance through validating sensors at the endpoint and at Tier 2. Which of the following practices sati...
continuous monitoringongoing authorizationcompliance validationISCM - Question #757Enterprise Security
The source workstation image for new accounting PCs has begun blue-screening. A technician notices that the date/time stamp of the image source appears to have changed. The desktop...
file integrityhash verificationimage forensicschange detection - Question #758Integration of Computing, Communications and Business Disciplines
The technology steering committee is struggling with increased requirements stemming from an increase in telecommuting. The organization has not addressed telecommuting in the past...
telecommuting policyremote workSSL-VPNsecurity governance - Question #759Enterprise Security
A company is facing penalties for failing to effectively comply with e-discovery requests. Which of the following could reduce the overall risk to the company from this issue?
e-discoveryPKIencryption key escrowlegal compliance - Question #760Technical Integration of Enterprise Components
There have been some failures of the company's internal facing website. A security engineer has found the WAF to be the root cause of the failures. System logs show that the WAF ha...
MTTRavailability calculationWAFuptime metrics - Question #761Research and Analysis
A security firm is writing a response to an RFP from a customer that is building a new network based software product. The firm's expertise is in penetration testing corporate netw...
white box testingcode reviewsoftware securitypenetration testing - Question #762Enterprise Security
An external penetration tester compromised one of the client organization's authentication servers and retrieved the password database. Which of the following methods allows the pe...
pass the hashcredential attackslateral movementpenetration testing