Free Access CompTIA.CAS-003.v2022-08-15.q472 Practice Test (Page 31)

Question 146

An organization is in the process of integrating its operational technology and information technology areas. As part of the integration, some of the cultural aspects it would like to see include more efficient use of resources during change windows, better protection of critical infrastructure, and the ability to respond to incidents. The following observations have been identified:
* The ICS supplier has specified that any software installed will result in lack of support.
* There is no documented trust boundary defined between the SCADA and corporate networks.
* Operational technology staff have to manage the SCADA equipment via the engineering workstation.
* There is a lack of understanding of what is within the SCADA network.
Which of the following capabilities would BEST improve the security position?

A.VNC, router, and HIPS

B.SIEM, VPN, and firewall

C.Proxy, VPN, and WAF

D.IDS, NAC, and log monitoring

Question 147

A security engineer is helping the web developers assess a new corporate web application The application will be Internet facing so the engineer makes the following recommendation:
In an htaccess file or the site config add:
or add to the location block:

Which of the following is the security engineer trying to accomplish via cookies? (Select TWO)

A.Add a sequence ID to the cookie session ID while in transit to prevent CSRF.

B.Prevent cookies from being transmitted to other domain names

C.Allow cookie creation or updates only over TLS connections

D.Ensure session IDs are generated dynamically with each cookie request

E.Create a temporary space on the user's drive root for ephemeral cookie storage

F.Enforce the use of plain text HTTP transmission with secure local cookie storage

Question 148

A company contracts a security engineer to perform a penetration test of its client-facing web portal. Which of the following activities would be MOST appropriate?

A.Use a protocol analyzer against the site to see if data input can be replayed from the browser

B.Scan the website through an interception proxy and identify areas for the code injection

C.Scan the site with a port scanner to identify vulnerable services running on the web server

D.Use network enumeration tools to identify if the server is running behind a load balancer

Question 149

IT staff within a company often conduct remote desktop sharing sessions with vendors to troubleshoot vendor product-related issues. Drag and drop the following security controls to match the associated security concern.
Options may be used once or not at all.

Question 150

A security analyst has requested network engineers integrate sFlow into the SOC's overall monitoring picture.
For this to be a useful addition to the monitoring capabilities, which of the following must be considered by the engineering team?

A.Effective deployment of network taps

B.Optimal placement of log aggregators

C.Overall bandwidth available at Internet PoP

D.Availability of application layer visualizers

Other Version: 7511CompTIA.CAS-003.v2022-09-22.q535; 4322CompTIA.CAS-003.v2022-05-05.q206; 2991CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 239CFAInstitute.ESG-Investing.v2025-09-08.q173; 234PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 157Salesforce.Data-Architect.v2025-09-05.q216; 152Adobe.AD0-E605.v2025-09-05.q50

Question 146

Question 147

Question 148

Question 149

Question 150

Download PDF File