무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 72)

CAS-003 문제 351

One of the objectives of a bank is to instill a security awareness culture. Which of the following are techniques that could help to achieve this? (Choose two.)

A. Lunch-and-learn

B. Random audits

C. Continuous monitoring

D. Separation of duties

E. Blue teaming

F. Phishing simulations

CAS-003 문제 352

Using SSL, an administrator wishes to secure public facing server farms in three subdomains:
dc1.east.company.com, dc2.central.company.com, and dc3.west.company.com. Which of the following is the number of wildcard SSL certificates that should be purchased?

A. 0

B. 1

C. 3

D. 6

CAS-003 문제 353

Ann, a security administrator, is conducting an assessment on a new firewall, which was placed at the perimeter of a network containing PII. Ann runs the following commands on a server (10.0.1.19) behind the firewall:

From her own workstation (192.168.2.45) outside the firewall, Ann then runs a port scan against the server and records the following packet capture of the port scan:

Connectivity to the server from outside the firewall worked as expected prior to executing these commands.
Which of the following can be said about the new firewall?

A. It is correctly dropping all packets destined for the server.

B. Iptables needs to be restarted.

C. The IDS functionality of the firewall is currently disabled.

D. It is not blocking or filtering any traffic to the server.

CAS-003 문제 354

An organization recently experienced losses caused by users who installed applications from unauthorized sources on their smartphones. The organization wants to reduce the risk of reoccurrence but increase the monitoring and reporting of mobile device security at the enterprise level. Which of the following approaches would BEST meet these objectives?

A. Enforce device configurations with agents that leverage the devices' APIs, and feed logs and events to the enterprise SIEM solution.

B. Modify the organization's MAM configuration to capture events associated with application installations and removals, and set alerts to feed to the enterprise SIEM solution.

C. Set GPOs to enable the enterprise SIEM tool to collect all application and server logs, and configure the SIEM and its dashboard to protect against unauthorized application installations on mobile devices.

D. Configure and deploy an AD Group Policy that enforces an application whitelist on all x86-64 mobile devices, and feed logs to an enterprise audit management solution.

CAS-003 문제 355

A security engineer is assessing the controls that are in place to secure the corporate-Internet-facing DNS server. The engineer notices that security ACLs exist but are not being used properly. The DNS server should respond to any source but only provide information about domains it has authority over. Additionally, the DNS administrator have identified some problematic IP addresses that should not be able to make DNS requests. Given the ACLs below:

Which of the following should the security administrator configure to meet the DNS security needs?

A. Option B

B. Option D

C. Option C

D. Option A

다른 버전: 5039CompTIA.CAS-003.v2022-07-04.q589; 2159CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 108Oracle.1Z0-1160-1.v2025-09-10.q18; 105Oracle.1z0-1054-25.v2025-09-10.q50; 104Cisco.300-710.v2025-09-10.q297; 106VMware.2V0-41.24.v2025-09-10.q104; 152Avaya.78201X.v2025-09-09.q135; 141CompTIA.220-1202.v2025-09-09.q57; 172CheckPoint.156-215.81.v2025-09-09.q391; 200ECCouncil.312-50v13.v2025-09-09.q347; 129Supermicro.SMI300XS.v2025-09-08.q15; 125Oracle.1z0-1104-25.v2025-09-08.q12