Free Access CompTIA.CAS-003.v2022-09-22.q535 Practice Test (Page 104)

Question 511

An organization is a subsidiary of a larger firm that provides managed IT and human resources controls to the subsidiary. The subsidiary determines the contract in place between the two firms does not define and apply terms appropriate relating to the controls provided by the larger firm. Which of the following would be MOST appropriate for both firms to formally document the controls to be provided? (Select TWO.)

A.Interconnection security agreement

B.Interoperability agreement

C.Non-disclosure agreement

D.Service-level agreement

E.Master service agreement

F.Business impact analysis

Question 512

The Chief Executive Officer (CEO) instructed the new Chief Information Security Officer (CISO) to provide a list of enhancements to the company's cybersecurity operation. As a result, the CISO has identified the need to align security operations with industry best practices.
Which of the following industry references is appropriate to accomplish this?

A.OWASP

B.OSSM

C.NIST

D.PCI

Question 513

A company is facing penalties for failing to effectively comply with e-discovery requests. Which of the following could reduce the overall risk to the company from this issue?

A.Establish a policy that only allows filesystem encryption and disallows the use of individual file encryption.

B.Require each user to log passwords used for file encryption to a decentralized repository.

C.Permit users to only encrypt individual files using their domain password and archive all old user passwords.

D.Allow encryption only by tools that use public keys from the existing escrowed corporate PKI.

Question 514

A medical facility wants to purchase mobile devices for doctors and nurses. To ensure accountability, each individual will be assigned a separate mobile device. Additionally, to protect patients' health information, management has identified the following requirements:
- Data must be encrypted at rest.
- The device must be disabled if it leaves the facility.
- The device must be disabled when tampered with.
Which of the following technologies would BEST support these requirements? (Select two.)

A.eFuse

B.GPS

C.USB 4.1

D.MicroSD

E.Biometric

F.NFC

Question 515

A company recently experienced a period of rapid growth, and it now needs to move to a more scalable cloud-based solution Historically. salespeople have maintained separate systems for information on competing customers to prevent the inadvertent disclosure of one customer's information to another customer Which of the following would be the BEST method to provide secure data separation?

A.Migrate to a single-tenancy cloud infrastructure

B.Use a CRM tool to separate data stores

C.Implement an open-source public cloud CRM

D.Employ network segmentation to provide isolation among salespeople

Other Version: 6488CompTIA.CAS-003.v2022-08-15.q472; 4303CompTIA.CAS-003.v2022-05-05.q206; 2972CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50

Question 511

Question 512

Question 513

Question 514

Question 515

Download PDF File