CAS-005 · Question #457
CAS-005 Question #457: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #457. The question stem and answer options stay visible for context.
Question
A company recently migrated its critical web application to a cloud provider's environment. As part of the company's risk management program, the company intends to conduct an external penetration test. According to the scope of work and the rules of engagement, the penetration tester will validate the web application's security and check for opportunities to expose sensitive company information in the newly migrated cloud environment. Which of the following should be the first consideration prior to engaging in the test?
Options
- APrepare a redundant server to ensure the critical web application's availability during the test.
- BObtain agreement between the company and the cloud provider to conduct penetration testing.
- CEnsure the latest patches and signatures are deployed on the web server.
- DCreate an NDA between the external penetration tester and the company.
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.