Free Access CompTIA.CAS-003.v2022-08-15.q472 Practice Test (Page 29)

Question 136

A Chief Information Security Officer (CISO) is reviewing the controls in place to support the organization's vulnerability management program. The CISO finds patching and vulnerability scanning policies and procedures are in place. However, the CISO is concerned the organization is siloed and is not maintaining awareness of new risks to the organization. The CISO determines systems administrators need to participate in industry security events. Which of the following is the CISO looking to improve?

A.Vulnerabilitysignatures

B.Bountyprograms

C.Systemhardeningstandards

D.Threatawareness

E.Vendordiversification

Question 137

An organization is implementing a virtualized thin-client solution for normal user computing and access. During a review of the architecture, concerns were raised that an attacker could gain access to multiple user environments by simply gaining a foothold on a single one with malware.
Which of the following reasons BEST explains this?

A.Malware on one virtual user environment could be copied to all others by the attached network storage controller.

B.Malware on one virtual environment could enable pivoting to others by leveraging vulnerabilities in the hypervisor.

C.One virtual environment may have one or more application-layer vulnerabilities, which could allow an attacker to escape that environment.

D.A worm on one virtual environment could spread to others by taking advantage of guest OS networking services vulnerabilities.

Question 138

The helpdesk is receiving multiple calls about slow and intermittent Internet access from the finance department. The following information is compiled:
Caller 1, IP 172.16.35.217, NETMASK 255.255.254.0
Caller 2, IP 172.16.35.53, NETMASK 255.255.254.0
Caller 3, IP 172.16.35.173, NETMASK 255.255.254.0
All callers are connected to the same switch and are routed by a router with five built-in interfaces. The upstream router interface's MAC is 00-01-42-32-ab-1a A packet capture shows the following:
09:05:15.934840 arp reply 172.16.34.1 is-at 00:01:42:32:ab:1a
(00:01:42:32:ab:1a)
09:06:16.124850 arp reply 172.16.34.1 is-at 00:01:42:32:ab:1a
(00:01:42:32:ab:1a)
09:07:25.439811 arp reply 172.16.34.1 is-at 00:01:42:32:ab:1a
(00:01:42:32:ab:1a)
09:08:10.937590 IP 172.16.35.1 > 172.16.35.255: ICMP echo request, id
2305, seq 1, length 65534
09:08:10.937591 IP 172.16.35.1 > 172.16.35.255: ICMP echo request, id
2306, seq 2, length 65534
09:08:10.937592 IP 172.16.35.1 > 172.16.35.255: ICMP echo request, id
2307, seq 3, length 65534
Which of the following is occurring on the network?

A.A man-in-the-middle attack is underway on the network.

B.An ARP flood attack is targeting at the router.

C.The default gateway is being spoofed on the network.

D.A denial of service attack is targeting at the router.

Question 139

An organization has implemented an Agile development process for front end web application development. A new security architect has just joined the company and wants to integrate security activities into the SDLC.
Which of the following activities MUST be mandated to ensure code quality from a security perspective? (Select TWO).

A.Static and dynamic analysis is run as part of integration

B.Security standards and training is performed as part of the project

C.Daily stand-up meetings are held to ensure security requirements are understood

D.For each major iteration penetration testing is performed

E.Security requirements are story boarded and make it into the build

F.A security design is performed at the end of the requirements phase

Question 140

A security administrator is hardening a TrustedSolaris server that processes sensitive data. The data
owner has established the following security requirements:
The data is for internal consumption only and shall not be distributed to outside individuals

The systems administrator should not have access to the data processed by the server

The integrity of the kernel image is maintained

Which of the following host-based security controls BEST enforce the data owner's requirements?
(Choose three.)

A.Data encryption

B.SELinux

C.Watermarking

D.HIDS

E.Measured boot

F.Host-based firewall

G.DLP

Premium Bundle

Newest CAS-003 Exam PDF Dumps shared by BraindumpsPass.com for Helping Passing CAS-003 Exam! BraindumpsPass.com now offer the updated CAS-003 exam dumps, the BraindumpsPass.com CAS-003 exam questions have been updated and answers have been corrected get the latest BraindumpsPass.com CAS-003 pdf dumps with Exam Engine here:

Access CAS-003 Premium Version

(683 Q&As Dumps, 40%OFF Special Discount: Exam-Tests)

Other Version: 7502CompTIA.CAS-003.v2022-09-22.q535; 4322CompTIA.CAS-003.v2022-05-05.q206; 2991CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 121Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 171TheSecOpsGroup.CNSP.v2025-09-08.q20; 238CFAInstitute.ESG-Investing.v2025-09-08.q173; 225PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 156Salesforce.Data-Architect.v2025-09-05.q216; 151Adobe.AD0-E605.v2025-09-05.q50