CAS-003 Exam Questions
947 real CAS-003 exam questions with expert-verified answers and explanations. Page 8 of 19.
- Question #361Enterprise Security Operations
The government is concerned with remote military missions being negatively being impacted by the use of technology that may fail to protect operational security. To remediate this...
operational securitygeolocation datasocial media riskinformation leakage - Question #362Research, Development and Collaboration
Given the following code snippet: Of which of the following is this snippet an example?
code reviewimproper file usageapplication securityvulnerability identification - Question #363Risk Management
A company has created a policy to allow employees to use their personally owned devices. The Chief Information Officer (CISO) is getting reports of company data appearing on unappr...
BYOD securitydisk encryptiondata protectionmobile device management - Question #364Technical Integration of Enterprise Security
After a large organization has completed the acquisition of a smaller company, the smaller company must implement new host-based security controls to connect its employees' devices...
802.1XEAP-PEAPRADIUSnetwork authentication - Question #365Enterprise Security Operations
A forensic analyst suspects that a buffer overflow exists in a kernel module. The analyst executes the following command: dd if=/dev/ram of=/tmp/mem/dmp The analyst then reviews th...
buffer overflowASLRmemory forensicskernel security - Question #366Risk Management
Ann, a terminated employee, left personal photos on a company-issued laptop and no longer has access to them. Ann emails her previous manager and asks to get her personal photos ba...
data ownership policyemployee terminationHR processeslegal compliance - Question #367Enterprise Security Operations
During the decommissioning phase of a hardware project, a security administrator is tasked with ensuring no sensitive data is released inadvertently. All paper records are schedule...
data sanitizationdegaussingmedia disposalhardware decommissioning - Question #368Enterprise Security Operations
A company has decided to lower costs by conducting an internal assessment on specific devices and various internal and external subnets. The assessment will be done during regular...
configuration reviewtabletop exerciseinternal assessmentvulnerability management - Question #369Enterprise Security Architecture
A security engineer is attempting to increase the randomness of numbers used in key generation in a system. The goal of the effort is to strengthen the keys against predictive anal...
entropykey generationcryptographic randomnessPRNG - Question #370Risk Management
A security engineer is attempting to convey the importance of including job rotation in a company's standard security policies. Which of the following would be the BEST justificati...
job rotationinsider threatseparation of dutiessecurity policy - Question #371Enterprise Security Operations
A company is transitioning to a new VDI environment, and a system engineer is responsible for developing a sustainable security strategy for the VDIs. Which of the following is the...
VDI securitysystem hardeningpatch managementbaseline configuration - Question #372Risk Management
The Chief Information Officer (CIO) has been asked to develop a security dashboard with the relevant metrics. The board of directors will use the dashboard to monitor and track the...
KPIKRIsecurity metricsgovernance reporting - Question #373Risk Management
The Chief Executive Officer (CEO) of a small startup company has an urgent need for a security policy and assessment to address governance, risk management, and compliance. The com...
governancerisk managementcompliancesecurity consulting - Question #374Enterprise Security Operations
Following a recent and very large corporate merger, the number of log files an SOC needs to review has approximately tripled, The Chief Information Security Officer (CISO) has not...
SIEMlog managementSOC operationslog filtering - Question #375Technical Integration of Enterprise Security
A company's chief cybersecurity architect wants to configure mutual authentication to access an internal payroll website. The architect has asked the administration team to determi...
mutual authenticationTLSclient certificatesMITM prevention - Question #376Technical Integration of Enterprise Security
A security administrator is troubleshooting RADIUS authentication issues from a newly implemented controller-based wireless deployment. The RADIUS server contains the following inf...
RADIUS802.1Xwireless authenticationshared secret - Question #377Enterprise Security Operations
Following a recent network intrusion, a company wants to determine the current security awareness of all of its employees. Which of the following is the BEST way to test awareness?
security awarenessphishing simulationsocial engineeringemployee training - Question #378Risk Management
A security analyst has been asked to create a list of external IT security concerns, which are applicable to the organization. The intent is to show the different types of external...
threat modelingthreat intelligencerisk assessmentattack vectors - Question #379Technical Integration of Enterprise Security
A security architect has assigned an engineer to implement a system to maintain visibility, corporate IT devices as they transfer from department to department. The engineer must e...
asset managementblockchainchain of custodydevice tracking - Question #380Technical Integration of Enterprise Security
An administrator is working with management to develop policies related to the use of cloud- based resources that contain corporate data Management plans to require some control of...
MDMBYODmobile securitydata control - Question #381Technical Integration of Enterprise Security
Users have been reporting unusual automated phone calls, including names and phone numbers, that appear to come from devices internal to the company. \Which of the following should...
VoIP securitySIP-TLScall spoofingvishing - Question #382Enterprise Security Operations
A network engineer is upgrading the network perimeter and installing a new firewall, IDS. and external edge router. The IDS es reporting elevated UDP traffic and the Internal route...
IDSUDP floodnetwork baselinetraffic analysis - Question #383Technical Integration of Enterprise Security
An engineer needs to provide access to company resources for several offshore contractors. The contractors require. - Access to a number of applications, including internal website...
remote accessVDIVPNoffshore contractors - Question #384Technical Integration of Enterprise Security
An administrator has noticed mobile devices from an adjacent company on the corporate wireless network Malicious activity is being reported from those devices. To add another layer...
contextual authenticationGPSlocation-based accessmobile security - Question #385Risk Management
A security consultant is improving the physical security of a sensitive site and takes pictures of the unbranded building to include m the report Two weeks later, the security cons...
mobile securitydata encryptiongeotaggingEXIF metadata - Question #386Technical Integration of Enterprise Security
Users have been reporting unusual automated phone calls, including names and phone numbers, that appear to come from devices internal to the company. Which of the following should...
VoIP securitySIP-TLScall spoofingvishing - Question #387Technical Integration of Enterprise Security
During the deployment of a new system, the implementation team determines that APIs used to integrate the new system with a legacy system are not functioning properly Further inves...
API securitysecurity requirements traceability matrixencryption misconfigurationsystem integration - Question #388Enterprise Security Operations
As part of an organization's compliance program. administrators must complete a hardening checklist and note any potential improvements. The process of noting potential improvement...
continuous monitoringhardening checklistcomplianceconfiguration management - Question #389Technical Integration of Enterprise Security
A protect manager Ts working with a team that is tasked to develop software applications in a structured environment and host them in a vendor's cloud-based Infrastructure. The org...
PaaScloud service modelsshared responsibilitycloud deployment - Question #390Enterprise Security Operations
A security engineer has been hired to design a device that will enable the exfiltration of data from within a well-defended network perimeter during an authorized test. The device...
penetration testingreverse shelldata exfiltrationC2 communication - Question #391Enterprise Security Operations
A systems administrator has deployed the latest patches for Windows-based machines. However, the users on the network are experiencing exploits from various threat actors, which th...
patch managementvulnerability remediationendpoint securityreboot requirement - Question #392Enterprise Security Operations
An international e-commerce company has identified attack traffic originating from a whitelisted third party's IP address used to mask the third party's internal network. The secur...
proxy headersX-Forwarded-Forthird-party riskIP spoofing - Question #393Enterprise Security Architecture
A security administrator at a hospital has implemented a VDI infrastructure to improve the security of patient records The VDI solution is cloud based, while PHI is maintained on a...
VDI securityVM escapePHI protectionDLP - Question #394Research, Development and Collaboration
A scrum master is working with a development team to develop new functionality of a mobile communication platform. As part of the SDLC. changes must be peer reviewed prior to inclu...
SDLCpeer code reviewagile scrumsoftware development - Question #395Enterprise Security Operations
A Chief Information Officer (CIO) has mandated that all web-based applications the company uses are required to be hosted on the newest stable operating systems and application sta...
vulnerability scanningpatch complianceweb application securityaudit reporting - Question #396Enterprise Security Operations
A consulting firm was hired to conduct assessment for a company. During the first stage, a penetration tester used a tool that provided the following output: TCP 80 open TCP 443 op...
port scanningHTTP interceptionfuzzingpenetration testing tools - Question #397Risk Management
A security analyst has been asked to create a list of external IT security concerns, which are applicable to the organization. The intent is to show the different types of external...
threat modelingthreat actorsattack vectorsrisk communication - Question #398Risk Management
In the past, the risk committee at Company A has shown an aversion to even minimal amounts of risk acceptance. A security engineer is preparing recommendations regarding the risk o...
risk strategiesICS securityrisk acceptancevulnerability management - Question #399Enterprise Security Operations
A company has adopted and established a continuous-monitoring capability, which has proven to be effective in vulnerability management, diagnostics, and mitigation. The company wan...
threat huntingheuristic anomaly detectioncontinuous monitoringemerging threats - Question #400Enterprise Security Operations
An organization has recently deployed an EDR solution across its laptops, desktops, and server infrastructure. The organization's server infrastructure is deployed in an IaaS envir...
incident responseEDRcontainmentIOC sweep - Question #402Enterprise Security Architecture
An organization, which handles large volumes of PII, allows mobile devices that can process, store, and transmit PII and other sensitive data to be issued to employees. Security as...
MDMdata remanencemobile encryptionPII protection - Question #403Enterprise Security Architecture
A large company with a very complex IT environment is considering a move from an on-premises, internally managed proxy to a cloud-based proxy solution managed by an external vendor...
cloud migrationproxy servicesrisk assessmentvendor management - Question #404Technical Integration of Enterprise Security
A security engineer is deploying an IdP to broker authentication between applications. These applications all utilize SAML 2.0 for authentication. Users log into the IdP with their...
SAML 2.0SP-initiated authenticationIdP federationSSO troubleshooting - Question #405Enterprise Security Architecture
A security manager recently categorized an information system. During the categorization effort, the manager determined the loss of integrity of a specific information type would i...
data integritydigital signinginput validationinformation classification - Question #406Risk Management
A security analyst is reviewing the following company requirements prior to selecting the appropriate technical control configuration and parameter: RTO: 2 days RPO: 36 hours MTTR:...
RPObackup strategydisaster recoverybusiness continuity - Question #407Enterprise Security Operations
A penetration test is being scoped for a set of web services with API endpoints. The APIs will be hosted on existing web application servers. Some of the new APIs will be available...
penetration testingAPI securityintercepting proxyreconnaissance - Question #408Enterprise Security Operations
A recent overview of the network's security and storage applications reveals a large amount of data that needs to be isolated for security reasons. Below are the critical applicati...
log forwardingnetwork zonesSIEMdata isolation - Question #409Enterprise Security Operations
A security analyst who is concerned about sensitive data exfiltration reviews the following: Which of the following tools would allow the analyst to confirm if data exfiltration is...
data exfiltrationprotocol analyzernetwork monitoringDLP - Question #410Risk Management
As part of the development process for a new system, the organization plans to perform requirements analysis and risk assessment. The new system will replace a legacy system, which...
requirements analysisrisk assessmentSDLCsystem validation - Question #411Risk Management
A system owner has requested support from data owners to evaluate options for the disposal of equipment containing sensitive data. Regulatory requirements state the data must be re...
data remanencesecure disposaldata sanitizationregulatory compliance