무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 116)

CAS-003 문제 571

A technician receives the following security alert from the firewall's automated system:
Match_Time: 10/10/16 16:20:43
Serial: 002301028176
Device_name: COMPSEC1
Type: CORRELATION
Scrusex: domain\samjones
Scr: 10.50.50.150
Object_name: beacon detection
Object_id: 6005
Category: compromised-host
Severity: medium
Evidence: host repeatedly visited a dynamic DNS domain (17 time)
After reviewing the alert, which of the following is the BEST analysis?

A. this alert indicates an endpoint may be infected and is potentially contacting a suspect host.

B. this alert indicates a user was attempting to bypass security measures using dynamic DNS.

C. this alert was generated by the SIEM because the user attempted too many invalid login attempts.

D. the alert is a false positive because DNS is a normal network function.

CAS-003 문제 572

A company has entered into a business agreement with a business partner for managed human resources services. The Chief Information Security Officer (CISO) has been asked to provide documentation that is required to set up a business-to-business VPN between the two organizations.
Which of the following is required in this scenario?

A. RA

B. ISA

C. BIA

D. SLA

CAS-003 문제 573

A software company is releasing a new mobile application to a broad set of external customers. Because the software company is rapidly releasing new features, it has built in an over-the-air software update process that can automatically update the application at launch time. Which of the following security controls should be recommended by the company's security architect to protect the integrity of the update process? (Choose two.)

A. Validate cryptographic signatures applied to software updates

B. Perform certificate pinning of the associated code signing key

C. Require HTTPS connections for downloads of software updates

D. Ensure there are multiple download mirrors for availability

E. Enforce a click-through process with user opt-in for new features

CAS-003 문제 574

A multi-national company has a highly mobile workforce and minimal IT infrastructure. The company utilizes a BYOD and social media policy to integrate presence technology into global collaboration tools by individuals and teams. As a result of the dispersed employees and frequent international travel, thecompany is concerned about the safety of employees and their families when moving in and out of certain countries.
Which of the following could the company view as a downside of using presence technology?

A. Insider threat

B. Network reconnaissance

C. Physical security

D. Industrial espionage

CAS-003 문제 575

When reviewing KRIs of the email security appliance with the Chief Information Security Officer (CISO) of an insurance company, the security engineer notices the following:

Which of the following measures should the security engineer take to ensure PII is not intercepted in transit while also preventing interruption to business?

A. Prevent PII from being sent to domains that allow users to sign up for free webmail.

B. Enable transport layer security on all outbound email communications and attachments.

C. Quarantine emails sent to external domains containing PII and release after inspection.

D. Provide security awareness training regarding transmission of PII.

다른 버전: 4990CompTIA.CAS-003.v2022-07-04.q589; 2144CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 109Oracle.1Z0-908.v2025-09-06.q68; 112Oracle.1Z0-1055-24.v2025-09-05.q29; 275VMware.2V0-13.24.v2025-09-04.q75; 120Qlik.QSBA2022.v2025-09-04.q17; 122Oracle.1Z0-1073-23.v2025-09-03.q29; 120Cisco.300-820.v2025-09-03.q187; 118Oracle.1z0-1060-25.v2025-09-03.q26; 129CIPS.L5M4.v2025-09-02.q13; 141Fortinet.FCP_ZCS-AD-7.4.v2025-09-02.q12; 119PECB.ISO-45001-Lead-Auditor.v2025-09-02.q14