CAS-003 Exam Questions
947 real CAS-003 exam questions with expert-verified answers and explanations. Page 5 of 19.
- Question #206Technical Integration of Enterprise Security
A sensitive database needs its cryptographic integrity upheld. Which of the following controls meets this goal? (Select TWO).
data integritydata signingdatabase securityRBAC - Question #207Enterprise Security Operations
In developing a new computing lifecycle process for a large corporation, the security team is developing the process for decommissioning computing equipment. In order to reduce the...
data disposaldecommissioningdrive wipingphysical destruction - Question #208Enterprise Security Architecture
An administrator has four virtual guests on a host server. Two of the servers are corporate SQL servers, one is a corporate mail server, and one is a testing web server for a small...
virtualizationout-of-band managementmanagement NICnetwork segmentation - Question #209Enterprise Security Operations
Warehouse users are reporting performance issues at the end of each month when trying to access cloud applications to complete their end of the month financial reports. They have n...
traffic shapingQoSbandwidth managementnetwork performance - Question #210Enterprise Security Architecture
Ann, a Physical Security Manager, is ready to replace all 50 analog surveillance cameras with IP cameras with built-in web management. Ann has several security guard desks on diffe...
IP camerasproxy authenticationphysical securitynetwork segmentation - Question #211Technical Integration of Enterprise Security
An organization has just released a new mobile application for its customers. The application has an inbuilt browser and native application to render content from existing websites...
SSOtoken storagemobile securityauthentication - Question #212Enterprise Security Operations
An audit at a popular on-line shopping site reveals that a flaw in the website allows customers to purchase goods at a discounted rate. To improve security the Chief Information Se...
input validationfuzzingHTTP interceptionweb application testing - Question #213Enterprise Security Operations
A security administrator at Company XYZ is trying to develop a body of knowledge to enable heuristic and behavior based security event monitoring of activities on a geographically...
security monitoringbaseline developmentheuristic analysisnetwork modeling - Question #214Enterprise Security Architecture
A Security Manager is part of a team selecting web conferencing systems for internal use. The system will only be used for internal employee collaboration. Which of the following a...
web conferencingdata storage securityuser authenticationavailability - Question #215Technical Integration of Enterprise Security
An organization is in the process of integrating its operational technology and information technology areas. As part of the integration, some of the cultural aspects it would like...
ICS/SCADAOT/IT integrationtrust boundariesSIEM - Question #216Enterprise Security Operations
A security incident responder discovers an attacker has gained access to a network and has overwritten key system files with backdoor software. The server was reimaged and patched...
file integrity monitoringbackdoor detectionincident responsesystem recovery - Question #217Enterprise Security Architecture
A systems security engineer is assisting an organization's market survey team in reviewing requirements for an upcoming acquisition of mobile devices. The engineer expresses concer...
mobile securitybaseband radiofirmware vulnerabilitiesSoC architecture - Question #218Risk Management
Which of the following BEST represents a risk associated with merging two enterprises during an acquisition?
mergers and acquisitionsattack surface expansionrisk assessmententerprise integration - Question #219Enterprise Security Operations
An SQL database is no longer accessible online due to a recent security breach. An investigation reveals that unauthorized access to the database was possible due to an SQL injecti...
SQL injectioninput validationWAFweb application security - Question #220Technical Integration of Enterprise Security
A hospital uses a legacy electronic medical record system that requires multicast for traffic between the application servers and databases on virtual hosts that support segments o...
multicastVLAN configurationlegacy systemsnetwork segmentation - Question #221Enterprise Security Operations
A company contracts a security engineer to perform a penetration test of its client-facing web portal. Which of the following activities would be MOST appropriate?
penetration testingport scanningweb application securityvulnerability assessment - Question #222Risk Management
A company is acquiring incident response and forensic assistance from a managed security service provider in the event of a data breach. The company has selected a partner and must...
Vendor contractsIncident response servicesNon-Disclosure Agreement (NDA)Master Service Agreement (MSA) - Question #223Technical Integration of Enterprise Security
It has come to the IT administrator's attention that the "post your comment" field on the company blog page has been exploited, resulting in cross-site scripting attacks against cu...
XSS preventioninput validationmetacharacter filteringweb application security - Question #224Risk Management
An insurance company is looking to purchase a smaller company in another country. Which of the following tasks would the security administrator perform as part of the security due...
security due diligencemergers and acquisitionssecurity policiesrisk assessment - Question #225Technical Integration of Enterprise Security
A penetration tester is inspecting traffic on a new mobile banking application and sends the following web request: Content-type: application/json { "account": [ { "creditAccount":...
API securityinput validationsensitive data exposuremobile application security - Question #226Enterprise Security Operations
The DLP solution has been showing some unidentified encrypted data being sent using FTP to a remote server. A vulnerability scan found a collection of Linux servers that are missin...
incident responsedigital forensicsforensic imagingmalware analysis - Question #227Risk Management
A company has issued a new mobile device policy permitting BYOD and company-issued devices. The company-issued device has a managed middleware client that restricts the application...
BYODIT governancemobile device managementsecurity policy - Question #229Enterprise Security Architecture
A SaaS-based email service provider often receives reports from legitimate customers that their IP netblocks are on blacklists and they cannot send email. The SaaS has confirmed th...
email securityIP blacklistingreputation managementSaaS security - Question #230Technical Integration of Enterprise Security
After embracing a BYOD policy, a company is faced with new security challenges from unmanaged mobile devices and laptops. The company's IT department has seen a large number of the...
NACNIDSBYOD securitynetwork access control - Question #231Enterprise Security Operations
During a security event investigation, a junior analyst fails to create an image of a server's hard drive before removing the drive and sending it to the forensics analyst. Later,...
digital forensicschain of custodyevidence handlingincident response - Question #232Technical Integration of Enterprise Security
A web developer has implemented HTML5 optimizations into a legacy web application. One of the modifications the web developer made was the following client side optimization: local...
web application securitysession managementclient-side storagecookie security - Question #233Enterprise Security Architecture
A security engineer is designing a system in which offshore, outsourced staff can push code from the development environment to the production environment securely. The security en...
data loss preventionremote accessVDIoutsourcing security - Question #234Risk Management
One of the objectives of a bank is to instill a security awareness culture. Which of the following are techniques that could help to achieve this? (Choose two.)
security awarenessphishing simulationsecurity trainingorganizational culture - Question #235Enterprise Security Operations
In a situation where data is to be recovered from an attacker's location, which of the following are the FIRST things to capture? (Select TWO).
digital forensicsorder of volatilityvolatile memoryevidence collection - Question #236Technical Integration of Enterprise Security
A security administrator wants to deploy a dedicated storage solution which is inexpensive, can natively integrate with AD, allows files to be selectively encrypted and is suitable...
NASstorage securityActive Directory integrationfile encryption - Question #237Enterprise Security Architecture
An educational institution would like to make computer labs available to remote students. The labs are used for various IT networking, security, and programming courses. The requir...
VPNnetwork segmentationmutual certificate authenticationRADIUS - Question #238Risk Management
A company sales manager received a memo from the company's financial department which stated that the company would not be putting its software products through the same security t...
legal complianceSLA risksoftware security testingethics - Question #239Risk Management
An administrator wishes to replace a legacy clinical software product as it has become a security risk. The legacy product generates $10,000 in revenue a month. The new software pr...
ROI calculationcost-benefit analysissecurity investmentfinancial risk - Question #240Enterprise Security Operations
A small company's Chief Executive Officer (CEO) has asked its Chief Security Officer (CSO) to improve the company's security posture quickly with regard to targeted attacks. Which...
threat intelligencethreat feedstargeted attackssecurity posture - Question #241Enterprise Security Operations
A forensic analyst receives a hard drive containing malware quarantined by the antivirus application. After creating an image and determining the directory location of the malware...
digital forensicstimeline analysisfile system metadatamalware investigation - Question #242Enterprise Security Operations
Customers are receiving emails containing a link to malicious software. These emails are subverting spam filters. The email reads as follows: Delivered-To: [email protected] Rec...
email securitySMTP relayspam filteringphishing mitigation - Question #243Enterprise Security Operations
A forensics analyst suspects that a breach has occurred. Security logs show the company's OS patch system may be compromised, and it is serving patches that contain a zero-day expl...
digital forensicsdigital signaturesmalware analysissupply chain compromise - Question #244Technical Integration of Enterprise Security
A deployment manager is working with a software development group to assess the security of a new version of the organization's internally developed ERP tool. The organization pref...
SDLC securitystatic code analysisvulnerability assessmentsecurity testing lifecycle - Question #245Enterprise Security Operations
A company wants to perform analysis of a tool that is suspected to contain a malicious payload. A forensic analyst is given the following snippet: ^32^[34fda19(fd^43gfd/home/user/l...
reverse engineeringmalware analysisbinary analysisobfuscation - Question #246Enterprise Security Architecture
A security administrator is hardening a TrustedSolaris server that processes sensitive data. The data owner has established the following security requirements: The data is for int...
server hardeningmandatory access controlmeasured bootdata encryption - Question #247Technical Integration of Enterprise Security
Given the following output from a local PC: Which of the following ACLs on a stateful host-based firewall would allow the PC to serve an intranet website?
firewall ACLsstateful firewallintranet serviceshost-based firewall - Question #248Risk Management
An infrastructure team is at the end of a procurement process and has selected a vendor. As part of the final negotiations, there are a number of outstanding issues, including: 1....
vendor risk managementprocurement securitydata residencyrisk acceptance - Question #249Enterprise Security Operations
To prepare for an upcoming audit, the Chief Information Security Officer (CISO) asks for all 1200 vulnerabilities on production servers to be remediated. The security engineer must...
vulnerability managementpenetration testingthreat prioritizationred team - Question #250Risk Management
A systems administrator at a medical imaging company discovers protected health information (PHI) on a general purpose file server. Which of the following steps should the administ...
PHIHIPAA compliancedata classificationregulatory requirements - Question #251Enterprise Security Operations
A server (10.0.0.2) on the corporate network is experiencing a DoS from a number of marketing desktops that have been compromised and are connected to a separate network segment. T...
remotely triggered black holeDoS mitigationBGP routingnetwork security - Question #252Research, Development and Collaboration
The board of a financial services company has requested that the senior security analyst acts as a cybersecurity advisor in order to comply with recent federal legislation. The ana...
threat intelligencecybersecurity reportingindustry threat trendssecurity research - Question #253Risk Management
Which of the following describes a risk and mitigation associated with cloud data storage?
cloud securityshared tenancydata leakagecloud storage risks - Question #254Enterprise Security Architecture
A security administrator wants to prevent sensitive data residing on corporate laptops and desktops from leaking outside of the corporate network. The company has already implement...
DLPdata leakage preventionfull-tunnel VPNnetwork boundary controls - Question #255Risk Management
An IT manager is concerned about the cost of implementing a web filtering solution in an effort to mitigate the risks associated with malware and resulting data leakage. Given that...
SLEALEAROquantitative risk analysis - Question #256Enterprise Security Operations
A security firm is writing a response to an RFP from a customer that is building a new network based software product. The firm's expertise is in penetration testing corporate netw...
white box testingcode reviewsoftware security testingsecurity assessment methodology