무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 15)

CAS-003 문제 66

An organization is deploying IoT locks, sensors, and cameras, which operate over 802.11, to replace legacy building access control systems. These devices are capable of triggering physical access changes, including locking and unlocking doors and gates. Unfortunately, the devices have known vulnerabilities for which the vendor has yet to provide firmware updates.
Which of the following would BEST mitigate this risk?

A. Implement an out-of-band monitoring solution to detect message injections and attempts.

B. Require sensors to sign all transmitted unlock control messages digitally.

C. Associate the devices with an isolated wireless network configured for WPA2 and EAP-TLS.

D. Direct wire the IoT devices into physical switches and place them on an exclusive VLAN.

CAS-003 문제 67

The Chief Executive Officer (CEO) of a company that allows telecommuting has challenged the Chief Security Officer's (CSO) request to harden the corporate network's perimeter. The CEO argues that the company cannot protect its employees at home, so the risk at work is no different. Which of the following BEST explains why this company should proceed with protecting its corporate network boundary?

A. The corporate network is the only network that is audited by regulators and customers.

B. The aggregation of employees on a corporate network makes it a more valuable target for attackers.

C. Home networks are unknown to attackers and less likely to be targeted directly.

D. Employees are more likely to be using personal computers for general web browsing when they are at home.

CAS-003 문제 68

Following a complete outage of the electronic medical record system for more than 18 hours, the hospital's Chief Executive Officer (CEO) has requested that the Chief Information Security Officer (CISO) perform an investigation into the possibility of a disgruntled employee causing the outage maliciously. To begin the investigation, the CISO pulls all event logs and device configurations from the time of the outage. The CISO immediately notices the configuration of a top-of-rack switch from one day prior to the outage does not match the configuration that was in place at the time of the outage. However, none of the event logs show who changed the switch configuration, and seven people have the ability to change it. Because of this, the investigation is inconclusive.
Which of the following processes should be implemented to ensure this information is available for future investigations?

A. Asset inventory management

B. Configuration and change management

C. Test and evaluation

D. Incident response plan

CAS-003 문제 69

A network administrator with a company's NSP has received a CERT alert for targeted adversarial behavior at the company. In addition to the company's physical security, which of the following can the network administrator use to detect the presence of a malicious actor physically accessing the company's network or information systems from within? (Select TWO).

A. RAS

B. Vulnerability scanner

C. HTTP intercept

D. HIDS

E. Port scanner

F. Protocol analyzer

CAS-003 문제 70

In a situation where data is to be recovered from an attacker's location, which of the following are the FIRST things to capture? (Select TWO).

A. Removable media

B. Passwords written on scrap paper

C. Snapshots of data on the monitor

D. Documents on the printer

E. Volatile system memory

F. System hard drive

다른 버전: 4990CompTIA.CAS-003.v2022-07-04.q589; 2139CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 109Oracle.1Z0-908.v2025-09-06.q68; 112Oracle.1Z0-1055-24.v2025-09-05.q29; 275VMware.2V0-13.24.v2025-09-04.q75; 120Qlik.QSBA2022.v2025-09-04.q17; 122Oracle.1Z0-1073-23.v2025-09-03.q29; 120Cisco.300-820.v2025-09-03.q187; 118Oracle.1z0-1060-25.v2025-09-03.q26; 129CIPS.L5M4.v2025-09-02.q13; 141Fortinet.FCP_ZCS-AD-7.4.v2025-09-02.q12; 119PECB.ISO-45001-Lead-Auditor.v2025-09-02.q14