CAS-005 Exam Dumps - CompTIA SecurityX Certification Exam

Searching for workable clues to ace the CompTIA CAS-005 Exam? You’re on the right place! ExamCert has realistic, trusted and authentic exam prep tools to help you achieve your desired credential. ExamCert’s CAS-005 PDF Study Guide, Testing Engine and Exam Dumps follow a reliable exam preparation strategy, providing you the most relevant and updated study material that is crafted in an easy to learn format of questions and answers. ExamCert’s study tools aim at simplifying all complex and confusing concepts of the exam and introduce you to the real exam scenario and practice it with the help of its testing engine and real exam dumps

Go to page:

<< First
Prev
1
2
3
4
5
6
7
8
9
10
Next
Last >>

Question # 4

A company implemented a NIDS and a NIPS on the most critical environments. Since this implementation, the company has been experiencing network connectivity issues. Which of the following should the security architect recommend for a new NIDS/NIPS implementation?

Implementing the NIDS with a port mirror in the core switch and the NIPS in the main firewall

Implementing the NIDS and the NIPS together with the main firewall

Implementing a NIDS without a NIPS to increase the detection capability

Implementing the NIDS in the bastion host and the NIPS in the branch network router

Full Access

Question # 5

A company designs policies and procedures for hardening containers deployed in the production environment. However, a security assessment reveals that deployed containers are not complying with the security baseline. Which of the following solutions best addresses this issue throughout early life-cycle stages?

Installing endpoint agents on each container and setting them to report when configurations drift from the baseline

Finding hardened container images and enforcing them as the baseline for new deployments

Creating a pipeline to check the containers through security gates and validating the baseline controls before the final deployment

Running security assessments regularly and checking for the security baseline on containers already in production

Full Access

Question # 6

An organization recently migrated data to a new file management system. The architect decides to use a discretionary authorization model on the new system. Which of the following best explains the architect's choice?

The responsibility of migrating data to the new file management system was outsourced to the vendor providing the platform.

The permissions were not able to be migrated to the new system, and several stakeholders were made responsible for granting appropriate access.

The legacy file management system did not support modern authentication techniques despite the business requirements.

The data custodians were selected by business stakeholders to ensure backups of the file management system are maintained off site.

Full Access

Question # 7

A security engineer wants to propose an MDM solution to mitigate certain risks. The MDM solution should meet the following requirements:

â€¢ Mobile devices should be disabled if they leave the trusted zone.

â€¢ If the mobile device is lost, data is not accessible.

Which of the following options should the security engineer enable on the MDM solution? (Select two).

Geofencing

Patch management

Containerization

Full disk encryption

Allow/blocklist

Geotagging

Full Access

Question # 8

A malicious actor exploited firmware vulnerabilities and used rootkits in an attack on an organization. After the organization recovered from the incident, an engineer needs to recommend a solution that reduces the likelihood of the same type of attack in the future. Which of the following is the most relevant solution?

Enabling software integrity checks

Installing self-encrypting drives

Implementing measured boot

Configuring host-based encryption

Full Access