Online Access Free CAS-003 Practice Test

An organization is reviewing endpoint security solutions. In evaluating products, the organization has the following requirements:
Support server, laptop, and desktop infrastructure
Due to limited security resources, implement active protection capabilities Provide users with the ability to self-service classify information and apply policies Protect data-at-rest and data-in-use Which of the following endpoint capabilities would BEST meet the above requirements? (Select two.)

• A.Data loss prevention
• B.Log monitoring
• C.Rights management
• D.Endpoint detect and respond
• E.Application whitelisting
• F.Antivirus

A manufacturing company recently recovered from an attack on its ICS devices. It has since reduced the attack surface by isolating the affected components. The company now wants to implement detection capabilities. It is considering a system that is based on machine learning. Which of the following features would BEST describe the driver to adopt such nascent technology over mainstream commercial IDSs?

• A.Classifies traffic based on logical protocols and messaging formats
• B.Automatically reconfigures ICS devices based on observed behavior
• C.Trains on normal behavior and identifies deviations therefrom
• D.Identifies and triggers upon known bad signatures and behaviors

A new identity management program was recently initialed to reduce risk and improve the employee experience. The environment is complex it does not support rest APIs but has multiple identity stores Password resets are the help desk's top ticket item and it takes the organization weeks to manually create access for new employees. The applications in the scope of the program are the enterprise service bus SaaS web portals and internal web portal. The goals of the program include
* Reducing costs by centralizing authentication and authorization
* Streamlining business processes
* Enabling employees to have immediate access
* Reducing password reset tickets by 90%
To meet the above goals and the business case which of the following authentication and authorization capabilities does the security architect need to implement?

• A.OpenlD. SPML LOAP. and WAYF
• B.Kerberos XACML AD and SPML
• C.OAuth, SCIM AD and WS-Security
• D.SAML. XACML SCIM. and LDAP

A company is purchasing an application that will be used to manage all IT assets as well as provide an incident and problem management solution for IT activity The company narrows the search to two products. Application A and Application B; which meet all of its requirements. Application A is the most cost-effective product, but it is also the riskiest so the company purchases Application B.
Which of the following types of strategies did the company use when determining risk appetite?

• A.Acceptance
• B.Mitigation
• C.Avoidance
• D.Transfer

A penetration tester is conducting an assessment on Comptia.org and runs the following command from a coffee shop while connected to the public Internet:

Which of the following should the penetration tester conclude about the command output?

• A.The DNS SPF records have not been updated for Comptia.org
• B.The public/private views on the Comptia.org DNS servers are misconfigured
• C.Comptia.org is running an older mail server, which may be vulnerable to exploits
• D.192.168.102.67 is a backup mail server that may be more vulnerable to attack