Free Access CompTIA.CAS-003.v2022-05-05.q206 Practice Test (Page 3)

Question 6

A creative services firm has a limited security budget and staff. Due to its business model, the company sends and receives a high volume of files every day through the preferred method defined by its customers. These include email, secure file transfers, and various cloud service providers. Which of the following would BEST reduce the risk of malware infection while meeting the company's resource requirements and maintaining its current workflow?

A.Enable customers to send and receive files via SFTP

B.Implement appropriate DLP systems with strict policies.

C.Contract a cloud-based sandbox security service.

D.Configure a network-based intrusion prevention system

Question 7

Which of the following system would be at the GREATEST risk of compromise if found to have an open vulnerability associated with perfect ... secrecy?

A.SIEM

B.VPN concentrators

C.Virtual hosts

D.Endpoints

E.Layer 2 switches

Question 8

The Chief Executive Officer (CEO) instructed the new Chief Information Security Officer (CISO) to provide a list of enhancements to the company's cybersecurity operation. As a result, the CISO has identified the need to align security operations with industry best practices. Which of the following industry references is appropriate to accomplish this?

A.PCI

B.OSSM

C.OWASP

D.NIST

Question 9

A company suspects a web server may have been infiltrated by a rival corporation. The security engineer reviews the web server logs and finds the following:

The security engineer looks at the code with a developer, and they determine the log entry is created when the following line is run:

Which of the following is an appropriate security control the company should implement?

A.Restrict directory permission to read-only access.

B.Parameterize a query in the path variable to prevent SQL injection.

C.Separate the items in the system call to prevent command injection.

D.Use server-side processing to avoid XSS vulnerabilities in path input.

Question 10

A global company has decided to implement a cross-platform baseline of security settings for all company laptops. A security engineer is planning and executing the project. Which of the following should the security engineer recommend?

A.Replace each laptop in the company's environment with a standardized laptop that is preconfigured to match the baseline settings

B.Leverage an MDM solution to apply the baseline settings and deploy continuous monitoring of security configurations.

C.Create batch script files that will enable the baseline security settings and distribute them to global employees for execution

D.Send each laptop to a regional IT office to be reimaged with the new baseline security settings enabled and then redeployed

E.Establish GPO configurations for each baseline setting, test that each works as expected, and have each setting deployed to the laptops.

Premium Bundle

Newest CAS-003 Exam PDF Dumps shared by BraindumpsPass.com for Helping Passing CAS-003 Exam! BraindumpsPass.com now offer the updated CAS-003 exam dumps, the BraindumpsPass.com CAS-003 exam questions have been updated and answers have been corrected get the latest BraindumpsPass.com CAS-003 pdf dumps with Exam Engine here:

Access CAS-003 Premium Version

(683 Q&As Dumps, 40%OFF Special Discount: Exam-Tests)

Other Version: 7444CompTIA.CAS-003.v2022-09-22.q535; 6477CompTIA.CAS-003.v2022-08-15.q472; 2962CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 146Salesforce.Data-Architect.v2025-09-05.q216; 140Adobe.AD0-E605.v2025-09-05.q50