Valid comptia CAS-002 Exam Dumps PDF - Updated CAS-002 Question Answers

1. CompTIA Advanced Security Practitioner (CASP) Exam CAS-002 Dumps Click here for more information https://www.realexamcollection.com/comptia/cas-002-dumps.html

2. Sample question : 1 A company is in the process of outsourcing its customer relationship management system to a cloud provider. It will host the entire organization’s customer database. The database will be accessed by both the company’s users and its customers. The procurement department has asked what security activities must be performed for the deal to proceed. Which of the following are the MOST appropriate security activities to be performed as part of due diligence? (Select TWO). Options A. Physical penetration test of the datacenter to ensure there are appropriate controls B. Penetration testing of the solution to ensure that the customer data is well protected C. Security clauses are implemented into the contract such as the right to audit D. Review of the organizations security policies, procedures and relevant hosting certifications E. Code review of the solution to ensure that there are no back doors located in the software. Answer: C,D https://www.realexamcollection.com/comptia/cas-002-dumps.html

3. Sample question : 2 A system administrator has a responsibility to maintain the security of the video teleconferencing system. During a self-audit of the video teleconferencing room, the administrator notices that speakers and microphones are hard-wired and wireless enabled. Which of the following security concerns should the system administrator have about the existing technology in the room? Options A. Wired transmissions could be intercepted by remote users. B. Bluetooth speakers could cause RF emanation concerns. C. Bluetooth is an unsecure communication channel. D. Wireless transmission causes interference with the video signal. Answer: C https://www.realexamcollection.com/comptia/cas-002-dumps.html

4. Sample question : 3 A government agency considers confidentiality to be of utmost importance and availability issues to be of least importance. Knowing this, which of the following correctly orders various vulnerabilities in the order of MOST important to LEAST important? Options A. Insecure direct object references, CSRF, Smurf B. Privilege escalation, Application DoS, Buffer overflow C. SQL injection, Resource exhaustion, Privilege escalation D. CSRF, Fault injection, Memory leaks Answer: A https://www.realexamcollection.com/comptia/cas-002-dumps.html

5. Sample question : 4 A new piece of ransomware got installed on a company’s backup server which encryptedthe hard drives containing the OS and backup application configuration but did not affect the deduplication data hard drives. During the incident response, the company finds that all backup tapes for this server are also corrupt. Which of the following is the PRIMARY concern? Options A. Determining how to install HIPS across all server platforms to prevent future incidents B. Preventing the ransomware from re-infecting the server upon restore C. Validating the integrity of the deduplicated data D. Restoring the data will be difficult without the application configuration Answer: D https://www.realexamcollection.com/comptia/cas-002-dumps.html

6. Sample question : 5 A network administrator with a company’s NSP has received a CERT alert for target edadversarial behavior at the company. In addition to the company’s physical security, which of the following can the network administrator use to detect the presence of a malicious actor physically accessing the company’s network or information systems from within? (Select TWO). Options A. RAS B. Vulnerability scanner C. HTTP intercept D. HIDS E. Port scanner F. Protocol analyzer Answer: D,F https://www.realexamcollection.com/comptia/cas-002-dumps.html

7. CompTIA Advanced Security Practitioner (CASP) Exam CAS-002 Dumps Click here for more information https://www.realexamcollection.com/comptia/cas-002-dumps.html