Question no.1
A university requires a significant increase in web and database server resources for one
week, twice a year, to handle student registration. The web servers remain idle for the rest
of the year. Which of the following is the MOST cost effective way for the university to
securely handle student registration?
A. Virtualize the web servers locally to add capacity during registration.
B. Move the database servers to an elastic private cloud while keeping the web servers
local.
C. Move the database servers and web servers to an elastic private cloud.
D. Move the web servers to an elastic public cloud while keeping the database servers
local.
Answer: D
Question no.2
A security administrator wants to prevent sensitive data residing on corporate laptops and
desktops from leaking outside of the corporate network. The company has already
implemented full-disk encryption and has disabled all peripheral devices on its desktops
and laptops. Which of the following additional controls MUST be implemented to minimize
the risk of data leakage? (Select TWO).
A. A full-system backup should be implemented to a third-party provider with strong
encryption for data in transit.
B. A DLP gateway should be installed at the company border.
C. Strong authentication should be implemented via external biometric devices.
D. Full-tunnel VPN should be required for all network communication.
E. Full-drive file hashing should be implemented with hashes stored on separate storage.
F. Split-tunnel VPN should be enforced when transferring sensitive data.
Answer: B,D
Question no.3
The risk manager has requested a security solution that is centrally managed, can easily
be updated, and protects end users' workstations from both known and unknown malicious
attacks when connected to either the office or home network. Which of the following would
BEST meet this requirement?
A. HIPS
B. UTM
C. Antivirus
D. NIPS
E. DLP
Answer: A
Question no.4
The source workstation image for new accounting PCs has begun blue-screening. A
technician notices that the date/time stamp of the image source appears to have changed.
The desktop support director has asked the Information Security department to determine if
any changes were made to the source image. Which of the following methods would BEST
help with this process? (Select TWO).
A. Retrieve source system image from backup and run file comparison analysis on the two
images.
B. Parse all images to determine if extra data is hidden using steganography.
C. Calculate a new hash and compare it with the previously captured image hash.
D. Ask desktop support if any changes to the images were made.
E. Check key system files to see if date/time stamp is in the past six months.
Answer: A,C
Question no.5
A security administrator notices a recent increase in workstations becoming compromised
by malware. Often, the malware is delivered via drive-by downloads, from malware hosting
websites, and is not being detected by the corporate antivirus. Which of the following
solutions would provide the BEST protection for the company?
A. Increase the frequency of antivirus downloads and install updates to all workstations.
B. Deploy a cloud-based content filter and enable the appropriate category to prevent
further infections.
C. Deploy a WAF to inspect and block all web traffic which may contain malware and
exploits.
D. Deploy a web based gateway antivirus server to intercept viruses before they enter the
network.
Answer: B
I carefully prepared for my final exam with CompTIA CAS-002 dumps. This short study guide gave me apposite information about the exam that helped me to perform extraordinarily. The knowledge that was provided by CompTIA CAS-002 PDF questions and answer was adequate to achieve high grades. I am very thankful for this help.
ReplyDeleteDumps4Download has helped me with CAS-002 dumps during my IT exam and gave me a chance to study under the guidance of experts. I’m so happy after getting such a success. I’m looking forward for a bright career with the knowledge I learned from CAS-002 exam material.
ReplyDeleteMy routine was extremely exacting when I chose to show up in CompTIA Advanced Security Practitioner test and the time was excessively short. A companion of mine prescribed me to take help from CompTIA CAS-002. I downloaded it from Exam4lead.com and endeavored to get decidedly ready. The inquiries and answers parcel helped me the most in light of the fact that depiction was extremely basic and direct. I remembered all the points and unhesitatingly showed up in the test. I am upbeat for my outcome. on the off chance that you are additionally looking for a dependable test material, at that point I will recommend you to take CAS-002 Dumps Online Test Engine.
ReplyDeleteVery useful content. dumpsforsure.com made me take advantage of the difficult scenario I was going to face on my test day. I passed my last CAS-002 Dumps exam with impressive results. They offer additional tips and tricks that will come in handy in the final exams. The content is updated regularly so you don't have to worry about the latest questions. It has been recommended by many of my friends and I recommend everyone to try it too. What they said is true. Use their services and become one of the happiest customers. Many thanks to dumpsforsure.com.
ReplyDelete