무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 73)

CAS-003 문제 356

보안 관리자가 IPS-IDS 시스템에서 모니터링하는 특정 포트 및 IP 주소와 회사와 새 비즈니스 파트너 간의 경계 네트워크에 대한 방화벽 배치를 확인하고 있습니다. 다음 비즈니스 문서 중 보안 관리자가 수행해야 하는 매개변수를 정의하는 문서 확인하다?

A. NDA

B. 비아

C. ISA

D. MOU

CAS-003 문제 357

A security administrator at Company XYZ is trying to develop a body of knowledge to enable heuristic and behavior based security event monitoring of activities on a geographically distributed network. Instrumentation is chosen to allow for monitoring and measuring the network.
Which of the following is the BEST methodology to use in establishing this baseline?

A. Model the network in a series of VMs;
instrument the systems to record comprehensive metrics;
run a large volume of simulated data through the model;
record and analyze results;
document expected future behavior.

B. Schedule testing on operational systems when users are not present; instrument the systems to log all network traffic; monitor the network for at least eight hours; analyze the results; document the established baseline.

C. Instrument the operational network;
simulate extra traffic on the network;
analyze net flow information from all network devices;
document the baseline volume of traffic.

D. Completely duplicate the network on virtual machines;
replay eight hours of captured corporate network traffic through the duplicate network; instrument the network; analyze the results; document the baseline.

CAS-003 문제 358

A Chief Information Securiy Officer (CISO) is reviewing technical documentation from various regional offices and notices some key differences between these groups. The CISO has not discovered any governance documentation. The CISO creates the following chart to visualize the differences among the networking used.

Which of the following would be the CISO's MOST immediate concern?

A. The network has competing standards in use.

B. There are open standards in use on the network.

C. Network engineers have ignored defacto standards.

D. Network engineers are not following SOPs.

CAS-003 문제 359

An e-commerce company that provides payment gateways is concerned about the growing expense and time associated with PCI audits of its payment gateways and external audits by customers for their own compliance reasons The Chief Information Officer (CIO) asks the security team to provide a list of options that will:
1. Reduce the overall cost of these audits
2. Leverage existing infrastructure where possible
3. Keep infrastructure costs to a minimum
4. Provide some level of attestation of compliance
Which of the following will BEST address the CIO"s concerns? (Select TWO)

A. Implement a GRC system to track and monitor controls

B. Invest in new UBA to detect report, and remediate attacks faster

C. Implement DLP controls on HTTP'HTTPS and email

D. Install EDR agents on all corporate endpoints

E. Undertake ISO certification for all core infrastructure including datacenters.

F. Segment the network to reduce and limit the audit scope

CAS-003 문제 360

Joe an application security engineer is performing an audit of an environmental control application He has implemented a robust SDLC process and is reviewing API calls available to the application During the review.
Joe finds the following in a log file.

Which of the following would BEST mitigate the issue Joe has found?

A. Ensure the API uses SNMPv1.

B. Perform authentication via a secure channel

C. Deploy a WAF in front of the API and implement rate limiting

D. Verify the API uses HTTP GET instead of POST

다른 버전: 5038CompTIA.CAS-003.v2022-07-04.q589; 2159CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 107Oracle.1Z0-1160-1.v2025-09-10.q18; 104Oracle.1z0-1054-25.v2025-09-10.q50; 102Cisco.300-710.v2025-09-10.q297; 104VMware.2V0-41.24.v2025-09-10.q104; 150Avaya.78201X.v2025-09-09.q135; 138CompTIA.220-1202.v2025-09-09.q57; 153CheckPoint.156-215.81.v2025-09-09.q391; 189ECCouncil.312-50v13.v2025-09-09.q347; 127Supermicro.SMI300XS.v2025-09-08.q15; 123Oracle.1z0-1104-25.v2025-09-08.q12