CAS-005 Exam Questions

Users are willing passwords on paper because of the number of passwords needed in an environment. Which of the following solutions is the best way to manage this situation and decr...

The material findings from a recent compliance audit indicate a company has an issue with excessive permissions. The findings show that employees changing roles or departments resu...

A security architect is establishing requirements to design resilience in an enterprise system trial will be extended to other physical locations. The system must: - Be survivable...

Users must accept the terms presented in a captive petal when connecting to a guest network. Recently, users have reported that they are unable to access the Internet after joining...

A security configure is building a solution to disable weak CBC configuration for remote access connections lo Linux systems. Which of the following should the security engineer mo...

A security team is responding to malicious activity and needs to determine the scope of impact. The malicious activity appears to affect a certain version of an application used by...

A software development team requires valid data for internal tests. Company regulations, however do not allow the use of this data in cleartext. Which of the following solutions be...

An organization is developing an AI-enabled digital worker to help employees complete common tasks, such as template development, editing, research, and scheduling. As part of the...

A hospital provides tablets to its medical staff to enable them to more quickly access and edit patients' charts. The hospital wants to ensure that if a tablet is Identified as los...

A company is migrating its data center to the cloud. Some hosts had been previously isolated, but a risk assessment convinced the engineering team to reintegrate the systems. Becau...

A mobile device hardware manufacturer receives the following requirements from a company that wants to produce and sell a new mobile platform: - The platform should store biometric...

A security administrator has been provided with three separate certificates and is trying to organize them into a single chain of trust to deploy on a website. Given the following...

A security architect discovers the following page while testing a website for vulnerabilities: 404 - page not found: /gy67162 The page you have requested is no. avai.able on .his s...

A company's BIA indicates that any loss of more than one hour of data would be catastrophic to the business. Which of the following must be in place to meet this requirement?

A customer requires secure communication of subscribed web services at all times, but the company currently signs its own certificate requests to an internal CA. Which of the follo...

A company moved its on-premises services to the cloud. Although a recent audit verified that data throughout the cloud service is properly classified and documented, other systems...

A security analyst is assessing a new application written in Java. The security analyst must determine which vulnerabilities exist during runtime. Which of the following would prov...

A company purchased Burp Suite licenses this year for each application security engineer. The engineers have used Burp Suite to identify several issues with the company's SaaS appl...

A security analyst reviews network logs and notices a large number of domain name queries originating from an internal server for an unknown domain, similar to the following: 27362...

A security administrator at a global organization wants to update password complexity rules for a system containing personally identifiable information. Which of the following woul...

A company wants to prevent a partner company from denying agreement to a transaction. Which of the following is the best solution for the company?

A company has integrated source code from a subcontractor into its security product. The subcontractor is located in an adversarial country and has informed the company of a requir...

A security analyst is designing a touch screen device so users can gain entry into a locked room by touching buttons numbered zero through nine in a specific numerical sequence. Th...

A regulated company is in the process of refreshing its entire infrastructure. The company has a business-critical process running on an old 2008 Windows server. If this server fai...

During a vendor assessment, an analyst reviews a listing of the complementary user entity controls included in the audit report. Which of the following is the most important aspect...

A company recently deployed new servers to create an additional cluster to support a new application. The corporate security policy states that all new servers must be resilient. T...

A security manager is creating a standard configuration across all endpoints that handle sensitive data. Which of the following techniques should be included in the standard config...

A security engineer needs to ensure production containers are automatically scanned for vulnerabilities before they are accepted into the production environment. Which of the follo...

A SIEM generated an alert after a third-party database administrator, who had recently been granted temporary access to the repository, accessed business-sensitive content in the d...

SIMULATION You are a security analyst tasked with interpreting an Nmap scan output from company's privileged network. The company's hardening guidelines indicate the following: - T...

SIMULATION A product development team has submitted code snippets for review prior to release. INSTRUCTIONS Analyze the code snippets, and then select one vulnerability, and one fi...

SIMULATION A security engineer needs to review the configurations of several devices on the network to meet the following requirements: - The PostgreSQL server must only allow conn...

SIMULATION An IPSec solution is being deployed. The configuration files for both the VPN concentrator and the AAA server are shown in the diagram. Complete the configuration files...

SIMULATION An organization is planning for disaster recovery and continuity of operations. INSTRUCTIONS Review the following scenarios and instructions. Match each relevant finding...

SIMULATION An organization is planning for disaster recovery and continuity of operations, and has noted the following relevant findings: 1. A natural disaster may disrupt operatio...

SIMULATION During the course of normal SOC operations, three anomalous events occurred and were flagged as potential IoCs. Evidence for each of these potential IoCs is provided. IN...

SIMULATION You are tasked with integrating a new B2B client application with an existing OAuth workflow that must meet the following requirements: - The application does not need t...

A global organization is reviewing potential vendors to outsource a critical payroll function. Each vendor's plan includes using local resources in multiple regions to ensure compl...

A manufacturing plant is updating its IT services. During discussions, the senior management team created the following list of considerations: - Staff turnover is high and seasona...

A company runs a DAST scan on a web application. The tool outputs the following recommendations: - Use Cookie prefixes. - Content Security Policy - SameSite=strict is not set. Whic...

After a company discovered a zero-day vulnerability in its VPN solution, the company plans to deploy cloud-hosted resources to replace its current on-premises systems. An engineer...

An organization recently implemented a policy that requires all passwords to be rotated every 90 days. An administrator sees a large volume of failed sign-on logs from multiple ser...

A security analyst is reviewing the following code in the public repository for potential risk concerns: Which of the following should the security analyst recommend first to remed...

During a recent assessment, a security analyst observed the following: Which of the following should the analyst use to address the vulnerabilities in the future?

During a recent audit, a company's systems were assessed. Given the following information: Which of the following is the best way to reduce the attack surface?

The security team is receiving escalated support tickets stating that one of the company's publicly available websites is not loading as expected. Given the following observations:...

A company implemented a new NAC solution based on 802.1X. However, the IT support team notices that some devices are not being enrolled in the new policies, causing access disrupti...

An analyst wants to conduct a risk assessment on a new application that is being deployed. Given the following information: - Total budget allocation for the new application is una...

An organization's load balancers have reached EOL and are scheduled to be replaced. The organization identified a new, critical vulnerability that affects an unused function of the...

A security engineer receives an alert from the SIEM platform indicating a possible malicious action on the internal network. The engineer generates a report that outputs the logs a...