CAS-002 Exam Questions

A Chief Information Security Officer (CISO) has been trying to eliminate some IT security risks for several months. These risks are not high profile but still exist. Furthermore, m...

A company is planning to deploy an in-house Security Operations Center (SOC). One of the new requirements is to deploy a NIPS solution into the Internet facing environment. The SOC...

A security administrator wants to perform an audit of the company password file to ensure users are not using personal information such as addresses and birthdays as part of their...

An ecommerce application on a Linux server does not properly track the number of incoming connections to the server and may leave the server vulnerable to which of following?

The network administrator has been tracking the cause of network performance problems and decides to take a look at the internal and external router stats. Which of the following s...

A new malware spreads over UDP Port 8320 and several network hosts have been infected. A new security administrator has determined a possible cause, and the infected machines have...

At one time, security architecture best practices led to networks with a limited number (1-3) of network access points. This restriction allowed for the concentration of security r...

Company A is trying to implement controls to reduce costs and time spent on litigation. To accomplish this, Company A has established several goals: - Prevent data breaches from lo...

Company A is merging with Company B. Company B uses mostly hosted services from an outside vendor, while Company A uses mostly in-house products. The project manager of the merger...

A corporation relies on a server running a trusted operating system to broker data transactions between different security zones on their network. Each zone is a separate domain an...

A security architect is seeking to outsource company server resources to a commercial cloud service provider. The provider under consideration has a reputation for poorly controlli...

Virtual hosts with different security requirements should be:

The company is considering issuing non-standard tablet computers to executive management. Which of the following is the FIRST step the security manager should perform?

An employee of a company files a complaint with a security administrator. While sniffing network traffic, the employee discovers that financially confidential emails were passing b...

Company XYZ is selling its manufacturing business consisting of one plant to a competitor, Company QRS. All of the people will become QRS employees, but will retain permissions to...

A programming team is deploying a new PHP module to be run on a Solaris 10 server with trusted extensions. The server is configured with three zones, a management zone, a customer...

An administrator is troubleshooting availability issues on a FCoE based storage array that uses deduplication. An administrator has access to the raw data from the SAN and wants to...

During user acceptance testing, the security administrator believes to have discovered an issue in the login prompt of the company's financial system. While entering the username a...

Which of the following is a security advantage of single sign-on? (Select TWO).

A small company has recently placed a newly installed DNS server on the DMZ and wants to secure it by allowing Internet hosts to query the DNS server. Since the company deploys an...

Security is one of the most important issues an organization must discuss. Mitch wants security that is built into an application. Why would this be a problem?

David is a security administrator at his organization. He is trying to prevent unauthorized access to the corporate wireless network by people loafing around the office. What kind...

You have entered information in the database. It has been changed and is reflected in the database. What has been done?

Database models define the relationship between different data elements, dictate how data can be accessed and define acceptable operations, the type of integrity offered, and how t...

George is reading a publication on ethics-related statements concerning the use of the Internet. Who wrote this statement?

What is a single link that is pre-established for the purposes of WAN communications between two destinations?

Which of the following statements regarding the MD5 algorithm is NOT true?

What is the type of software that is installed on someone's computer without their knowledge?

There have been some failures of the company's customer-facing website. A security engineer has analyzed the root cause to be the WAF. System logs show that the WAF has been down f...

Which of the following is the MOST secure way to ensure third party applications and introduce only acceptable risk?

To prevent a third party from identifying a specific user as having previously accessed a service provider through an SSO operation, SAML uses which of the following?

An administrator implements a new PHP application into an existing website and discovers the newly added PHP pages do not work. The rest of the site also uses PHP and is functionin...

After a system update causes significant downtime, the Chief Information Security Officer (CISO) asks the IT manager who was responsible for the update. The IT manager responds tha...

A storage administrator would like to make storage available to some hosts and unavailable to other hosts. Which of the following would be used?

The IT Manager has mandated that an extensible markup language be implemented which can be used to exchange provisioning requests and responses for account creation. Which of the f...

The firm's CISO has been working with the Chief Procurement Officer (CPO) and the Senior Project Manager (SPM) on soliciting bids for a series of HIPS and NIPS products for a major...

A company data center provides Internet based access to email and web services. The firewall is separated into four zones: RED ZONE is an Internet zone ORANGE ZONE a Web DMZ YELLOW...

An administrator wants to integrate the Credential Security Support Provider (CredSSP) protocol network level authentication (NLA) into the remote desktop terminal services environ...

A company decides to purchase COTS software. This can introduce new security risks to the network. Which of the following is the BEST description of why this is true?

The increasing complexity of attacks on corporate networks is a direct result of more and more corporate employees connecting to corporate networks with mobile and personal devices...

When planning a complex system architecture, it is important to build in mechanisms to secure log information, facilitate audit log reduction, and event correlation. Besides synchr...

A financial institution has decided to purchase a very expensive resource management system and has selected the product and vendor. The vendor is experiencing some minor, but publ...

During a specific incident response and recovery process action, the response team determines that it must first speak to the person ultimately responsible for the data. With whom...

After a recent outbreak of malware attacks, the Chief Information Officer (CIO) tasks the new security manager with determining how to keep these attacks from reoccurring. The comp...

To support a software security initiative business case, a project manager needs to provide a cost benefit analysis. The project manager has asked the security consultant to perfor...

A network security engineer would like to allow authorized groups to access network devices with a shell restricted to only show information while still authenticating the administ...

SAML entities can operate in a variety of different roles. Valid SAML roles include which of the following?

When authenticating over HTTP using SAML, which of the following is issued to the authenticating user?

An existing enterprise architecture included an enclave where sensitive research and development work was conducted. This network enclave also served as a storage location for prop...

A legacy system is not scheduled to be decommissioned for two years and requires the use of the standard Telnet protocol. Which of the following should be used to mitigate the secu...