CompTIA CASP CAS-002 exam torrent.pdf

1. www.testpassport.com Exam Number/Code: CAS-002 Exam Name:CompTIA Advanced Security Practitioner Exam http://www.testpassport.com/CASP/CAS-002.asp Testpassport COMPTIA CAS-002 actual questions have been proved to be the most authoritative guides for you to prepare for your exam. You will find the actual questions are exactly the same as Testpassport COMPTIA CAS-002 questions and answers. If you want to pass your CAS-002 exam asap then just go to Testpassport. Guarantee Policy: 100% Money Back Guarantee Testpassport CAS-002 actual questions we provide are in a format of PDF, including enough exam questions and answers. It is different from traditional study materials for not only just help you summarize the main points, these dumps contains the majority of the real test questions which you will see in the CAS-002 exam. In order not to waste your valuable time, we removed all unrelated questions, the actual questions are enough for you to prepare for your test, and we promise to you that we have the coverage for at least 96%. www.testpassport.com

2. The safer , easier way to help you pass any IT exams.  Exam:CAS-002 Title: CompTIA Advanced Security Practitioner (CASP) Version:DEMO 1 / 3

3. The safer , easier way to help you pass any IT exams.  1.An insurance company is looking to purchase a smaller company in another country. Which of the following tasks would the security administrator perform as part of the security due diligence? A. Review switch and router configurations B. Review the security policies and standards C. Perform a network penetration test D. Review the firewall rule set and IPS logs Answer: B 2.A new piece of ransomware got installed on a company’s backup server which encrypted the hard drives containing the OS and backup application configuration but did not affect the deduplication data hard drives. During the incident response, the company finds that all backup tapes for this server are also corrupt. Which of the following is the PRIMARY concern? A. Determining how to install HIPS across all server platforms to prevent future incidents B. Preventing the ransomware from re-infecting the server upon restore C. Validating the integrity of the deduplicated data D. Restoring the data will be difficult without the application configuration Answer: D 3.The Chief Executive Officer (CEO) of a large prestigious enterprise has decided to reduce business costs by outsourcing to a third party company in another country. Functions to be outsourced include: business analysts, testing, software development and back office functions that deal with the processing of customer data. The Chief Risk Officer (CRO) is concerned about the outsourcing plans. Which of the following risks are MOST likely to occur if adequate controls are not implemented? A. Geographical regulation issues, loss of intellectual property and interoperability agreement issues B. Improper handling of client data, interoperability agreement issues and regulatory issues C. Cultural differences, increased cost of doing business and divestiture issues D. Improper handling of customer data, loss of intellectual property and reputation damage Answer: D 4.A security analyst has been asked to develop a quantitative risk analysis and risk assessment for the company’s online shopping application. Based on heuristic information from the Security Operations Center (SOC), a Denial of Service Attack (DoS) has been successfully executed 5 times a year. The Business Operations department has determined the loss associated to each attack is $40,000. After implementing application caching, the number of DoS attacks was reduced to one time a year. The cost of the countermeasures was $100,000. Which of the following is the monetary value earned during the first year of operation? A. $60,000 B. $100,000 C. $140,000 D. $200,000 Answer: A 5.The Information Security Officer (ISO) is reviewing new policies that have been recently made effective and now apply to the company. Upon review, the ISO identifies a new requirement to implement 2 / 3

4. The safer , easier way to help you pass any IT exams.  two-factor authentication on the company’s wireless system. Due to budget constraints, the company will be unable to implement the requirement for the next two years. The ISO is required to submit a policy exception form to the Chief Information Officer (CIO). Which of the following are MOST important to include when submitting the exception form? (Select THREE). A. Business or technical justification for not implementing the requirements. B. Risks associated with the inability to implement the requirements. C. Industry best practices with respect to the technical implementation of the current controls. D. All sections of the policy that may justify non-implementation of the requirements. E. A revised DRP and COOP plan to the exception form. F. Internal procedures that may justify a budget submission to implement the new requirement. G. Current and planned controls to mitigate the risks. Answer: A, B, G 3 / 3

5. www.testpassport.com Testpassport exams features: Various certifications are available at Testpassport.com Famous certifications: IBM, HP, CompTIA, Oracle, Avaya, Adobe Cover over 95% of real test. Free update in one year PDF and software version Provide free demo for any certification exam Over 150 Global Certification Vendors Covered. Services of Professional & Certified Experts available via support Verified answers researched by industry experts. Practice Questions updated on regular basis Many hot pages at Testpassport: Groupon page: http://www.testpassport.com/groupToday.asp Bundles page: http://www.testpassport.com/bundles.asp Promotion page: http://www.testpassport.com/promotion.asp How to pay page: http://www.testpassport.com/howtopay.asp All certifications here: Adobe Avaya BEA CIW CompTIA EC-COUNCIL EXIN Hitachi HP IBM ISEB Juniper Lotus Lpi Network Appliance Nortel OMG Oracle Polycom RES Software SASInstitute SNIA Sybase Symantec Tibco VMware Zend-Technologies Novell www.testpassport.com