CAS-003 Exam Questions
947 real CAS-003 exam questions with expert-verified answers and explanations. Page 9 of 19.
- Question #412Enterprise Security Operations
During a criminal investigation, the prosecutor submitted the original hard drive from the suspect's computer as evidence. The defense objected during the trial proceedings, and th...
digital forensicschain of custodyevidence handlinghard drive imaging - Question #413Enterprise Security Architecture
An organization just merged with an organization in another legal jurisdiction and must improve its network security posture in ways that do not require additional resources to imp...
network segmentationendpoint isolationdata isolationpost-merger security - Question #414Enterprise Security Architecture
After several industry comnpetitors suffered data loss as a result of cyebrattacks, the Chief Operating Officer (COO) of a company reached out to the information security manager t...
UTMthreat intelligenceunified securityspam filtering - Question #415Enterprise Security Architecture
An organization is in the process of evaluating service providers for an upcoming migration to cloud-based services for the organization's ERP system. As part of the requirements d...
cloud servicesvendor procurementdata isolationPaaS tenancy - Question #416Technical Integration of Enterprise Security
A company is not familiar with the risks associated with IPv6. The systems administrator wants to isolate IPv4 from IPv6 traffic between two different network segments. Which of th...
IPv6 securityTeredo tunnelingIPv4-IPv6 isolationnetwork protocol filtering - Question #417Risk Management
With which of the following departments should an engineer for a consulting firm coordinate when determining the control and reporting requirements for storage of sensitive, propri...
data governancesensitive data controlscompliance reportingstakeholder coordination - Question #418Technical Integration of Enterprise Security
The Chief Executive Officers (CEOs) from two different companies are discussing the highly sensitive prospect of merging their respective companies together. Both have invited thei...
email securityend-to-end encryptionPGPsecure communications - Question #419Risk Management
A bank is initiating the process of acquiring another smaller bank. Before negotiations happen between the organizations, which of the follwing business documents would be used as...
NDAbusiness agreementslegal documentsacquisition process - Question #420Technical Integration of Enterprise Security
A company wants to confirm sufficient executable space protection is in place for scenarios in which malware may be attempting buffer overflow attacks. Which of the following shoul...
buffer overflow protectionNX bitASLRmemory security - Question #421Risk Management
Which of the following describes a contract that is used to define the various levels of maintenance to be provided by an external business vendor in secure environment?
SLAvendor contractsservice agreementsmaintenance levels - Question #422Technical Integration of Enterprise Security
Developers are working on anew feature to add to a social media platform. Thew new feature involves users uploading pictures of what they are currently doing. The data privacy offi...
metadata removalEXIF dataprivacy controlsdata privacy - Question #423Enterprise Security Operations
A security technician receives a copy of a report that was originally sent to the board of directors by the Chief Information Security Officer (CISO). The report outlines the follo...
KPIKRIsecurity metricsAV coverage analysis - Question #424Risk Management
A Chief Information Security Officer (CISO) is reviewing the controls in place to support the organization's vulnerability management program. The CISO finds patching and vulnerabi...
threat awarenessvulnerability managementthreat intelligenceindustry collaboration - Question #425Enterprise Security Operations
Within the past six months, a company has experienced a series of attacks directed at various collaboration tools. Additionally, sensitive information was compromised during a rece...
collaboration securitydigital signaturessecure messaginginstant messaging - Question #426Enterprise Security Operations
Following a recent data breach, a company has hired a new Chief Information Security Officer (CISO). The CISO is very concerned about the response time to the previous breach and w...
incident responsetabletop exercisesecurity assessmentbusiness continuity - Question #427Enterprise Security Operations
A technician is validating compliance with organizational policies. The user and machine accounts in the AD are not set to expire, which is non-compliant. Which of the following ne...
SCAPcompliance scanningActive Directoryaccount expiration - Question #428Enterprise Security Operations
A Chief Security Officer (CSO) is reviewing the organization's incident response report from a recent incident. The details of the event indicate: 1. A user received a phishing ema...
phishingcredential compromiselast login verificationaccount monitoring - Question #429Enterprise Security Operations
An organization's Chief Financial Officer (CFO) was the target of several different social engineering attacks recently. The CFO has subsequently worked closely with the Chief Info...
malware sandboxemail securitysocial engineeringattachment analysis - Question #430Enterprise Security Architecture
A Chief Information Securiy Officer (CISO) is reviewing technical documentation from various regional offices and notices some key differences between these groups. The CISO has no...
network governancecompeting standardssecurity policyarchitecture review - Question #431Technical Integration of Enterprise Security
A security architect has been assigned to a new digital transformation program. The objectives are to provide better capabilities to customers and reduce costs. The program has hig...
federated identityIdP SSOaccess tokensmobile authentication - Question #432Technical Integration of Enterprise Security
Given the following: Which of the following vulnerabilities is present in the above code snippet?
DOM-based XSScode vulnerabilityinjectionweb application security - Question #433Risk Management
An organization is currently performing a market scan for managed security services and EDR capability. Which of the following business documents should be released to the prospect...
RFPRFIvendor procurementmanaged security services - Question #435Technical Integration of Enterprise Security
When reviewing KRIs of the email security appliance with the Chief Information Security Officer (CISO) of an insurance company, the security engineer notices the following: Which o...
TLSemail securityPII protectiondata in transit - Question #436Technical Integration of Enterprise Security
An organization is improving its web services to enable better customer engagement and self- service. The organization has a native mobile application and a rewards portal provided...
SSOSAMLOpenID Connectfederated identity - Question #437Enterprise Security Operations
After the departure of a developer under unpleasant circumstances, the company is concerned about the security of the software to which the developer has access. Which of the follo...
insider threatcode integrityregression testingsoftware security - Question #438Technical Integration of Enterprise Security
A software company is releasing a new mobile application to a broad set of external customers. Because the software company is rapidly releasing new features, it has built in an ov...
OTA updatescode signingcertificate pinningsoftware integrity - Question #439Risk Management
A Chief Information Security Officer (CISO) is developing a new BIA for the organization. The CISO wants to gather requirements to determine the appropriate RTO and RPO for the org...
BIARTO RPOERPbusiness continuity - Question #440Technical Integration of Enterprise Security
A Chief Information Security Officer (CISO) requests the following external hosted services be scanned for malware, unsecured PII, and healthcare data: - Corporate intranet site -...
CASBcloud securityDLPPII scanning - Question #441Enterprise Security Operations
Several recent ransomware outbreaks at a company have cost a significant amount of lost revenue. The security team needs to find a technical control mechanism that will meet the fo...
EDRransomware preventionbehavioral detectionendpoint security - Question #442Enterprise Security Operations
A company that has been breached multiple times is looking to protect cardholder data. The previous undetected attacks all mimicked normal administrative-type behavior. The company...
EDRDLPcardholder data protectioninsider threat detection - Question #443Risk Management
A security engineer is employed by a hospital that was recently purchased by a corporation. Throughout the acquisition process, all data on the virtualized file servers must be sha...
data ownershipaccess controldata governancemerger acquisition - Question #444Enterprise Security Operations
A security analyst is reviewing the following packet capture of communication between a host and a company's router: Which of the following actions should the security analyst take...
router ACLnetwork vulnerabilitypacket analysisnetwork hardening - Question #445Risk Management
An information security manager conducted a gap analysis, which revealed a 75% implementation of security controls for high-risk vulnerabilities, 90% for medium vulnerabilities, an...
gap analysisBIArisk prioritizationsecurity controls - Question #446Research, Development and Collaboration
A development team is testing an in-house-developed application for bugs. During the test, the application crashes several times due to null pointer exceptions. Which of the follow...
static code analysisnull pointer exceptionsecure codingIDE integration - Question #447Risk Management
A legacy web application, which is being used by a hospital, cannot be upgraded for 12 months. A new vulnerability is found in the legacy application, and the networking team is ta...
ALEAROrisk quantificationROI calculation - Question #448Technical Integration of Enterprise Security
A security engineer is assisting a developer with input validation, and they are studying the following code block: The security engineer wants to ensure strong input validation is...
input validationregular expressionssecure codingweb application security - Question #449Research, Development and Collaboration
A project manager is working with a software development group to collect and evaluate user stories related to the organization's internally designed CRM tool. After defining requi...
design reviewuser storiesSDLCrequirements validation - Question #450Enterprise Security Architecture
A network printer needs Internet access to function. Corporate policy states all devices allowed on the network must be authenticated. Which of the following is the MOST secure met...
certificate authenticationnetwork access controldevice authentication802.1X - Question #451Enterprise Security Operations
The Chief Information Security Officer (CISO) of an established security department, identifies a customer who has been using a fraudulent credit card. The CISO calls the local aut...
forensic imagingdigital forensicschain of custodyincident response - Question #452Technical Integration of Enterprise Security
A technician is configuring security options on the mobile device manager for users who often utilize public Internet connections while travelling. After ensuring that full disk en...
MDMremote wipealways-on VPNmobile security - Question #453Research, Development and Collaboration
A systems administrator receives an advisory email that a recently discovered exploit is being used in another country and the financial institutions have ceased operations while t...
threat intelligenceCVE databasesecurity advisoriesexploit research - Question #454Risk Management
A security assessor is working with an organization to review the policies and procedures associated with managing the organization's virtual infrastructure. During a review of the...
regulatory compliancevirtualization hardeningpolicy managementserver roles - Question #455Risk Management
While conducting a BIA for a proposed acquisition, the IT integration team found that both companies outsource CRM services to competing and incompatible third-party cloud services...
cloud migrationdata remnantsstorage encryptionBIA - Question #456Risk Management
A newly hired Chief Information Security Officer (CISO) is reviewing the organization's security budget from the previous year. The CISO notices $100,000 worth of fines were paid f...
email encryptionsecurity budgetcost-benefit analysisfine avoidance - Question #457Enterprise Security Operations
The Chief Information Security Officer (CISO) suspects that a database administrator has been tampering with financial data to the administrator's advantage. Which of the following...
mandatory vacationinsider threatfraud detectionadministrative controls - Question #458Enterprise Security Operations
While investigating suspicious activity on a server, a security administrator runs the following report: In addition, the administrator notices changes to the /etc/shadow file that...
rootkitfile integrity monitoringMD5 collisionforensic analysis - Question #459Enterprise Security Operations
Following the successful response to a data-leakage incident, the incident team lead facilitates an exercise that focuses on continuous improvement of the organization's incident r...
lessons learnedincident responsecontinuous improvement - Question #460Risk Management
A cybersecurity consulting company supports a diverse customer base. Which of the following types of constraints is MOST important for the consultancy to consider when advising a r...
regulatory compliancehealthcare securityrisk constraintsgovernance - Question #461Technical Integration of Enterprise Security
A company's security policy states any remote connections must be validated using two forms of network- based authentication. It also states local administrative accounts should no...
VPN authenticationRADIUSLDAPmulti-factor authentication - Question #462Risk Management
The finance department has started to use a new payment system that requires strict PII security restrictions on various network devices. The company decides to enforce the restric...
risk response strategiesPII securityPCI DSScompliance