CAS-003 문제 106
An organization has hardened its end points m the following ways
* USB ports are disabled except for approved input device IDs (e.g, mouse, keyboard)
* A desktop firewall is Mocking all outbound network connections, except to approved internal systems
* A VPN client is the only way to connect to the corporate network remotely and split tunneling is disabled
* Bluetooth is disabled
* Web browsing from end points is permitted but the traffic is directed through the VPN to the corporate gateway
* The email client is permitted to connect to the internal server over the VPN and DLP rules prohibit sending sensitive information to external recipients The organization recently suffered a security breach which a file containing PlI somehow made it from a remote user's laptop to an unauthorized host Which of the following is the MOST likely for how (his happened?
* USB ports are disabled except for approved input device IDs (e.g, mouse, keyboard)
* A desktop firewall is Mocking all outbound network connections, except to approved internal systems
* A VPN client is the only way to connect to the corporate network remotely and split tunneling is disabled
* Bluetooth is disabled
* Web browsing from end points is permitted but the traffic is directed through the VPN to the corporate gateway
* The email client is permitted to connect to the internal server over the VPN and DLP rules prohibit sending sensitive information to external recipients The organization recently suffered a security breach which a file containing PlI somehow made it from a remote user's laptop to an unauthorized host Which of the following is the MOST likely for how (his happened?
CAS-003 문제 107
The Chief Executive Officer (CEO) of an Internet service provider (ISP) has decided to limit the company's contribution to worldwide Distributed Denial of Service (DDoS) attacks. Which of the following should the ISP implement? (Select TWO).
CAS-003 문제 108
보안 컨설턴트가 금융 기관에 대한 인증 옵션을 고려하고 있습니다. 다음 인증 옵션을 사용할 수 있습니다. 보안 메커니즘을 적절한 사용 사례로 끌어다 놓습니다. 옵션은 한 번만 사용할 수 있습니다.
CAS-003 문제 109
A security engineer has implemented an internal user access review tool so service teams can baseline user accounts and group memberships. The tool is functional and popular among its initial set of onboarded teams. However, the tool has not been built to cater to a broader set of internal teams yet. The engineer has sought feedback from internal stakeholders, and a list of summarized requirements is as follows:
* The tool needs to be responsive so service teams can query it, and then perform an automated response action.
* The tool needs to be resilient to outages so service teams can perform the user access review at any point in time and meet their own SLAs.
* The tool will become the system-of-record for approval, reapproval, and removal life cycles of group memberships and must allow for data retrieval after failure.
Which of the following need specific attention to meet the requirements listed above? (Choose three.)
* The tool needs to be responsive so service teams can query it, and then perform an automated response action.
* The tool needs to be resilient to outages so service teams can perform the user access review at any point in time and meet their own SLAs.
* The tool will become the system-of-record for approval, reapproval, and removal life cycles of group memberships and must allow for data retrieval after failure.
Which of the following need specific attention to meet the requirements listed above? (Choose three.)
CAS-003 문제 110
A software development company lost customers recently because of a large number of software issues. These issues were related to integrity and availability defects, including buffer overflows, pointer deferences, and others. Which of the following should the company implement to improve code quality? (Select two).