Free Access CompTIA.CAS-003.v2022-09-22.q535 Practice Test (Page 73)

Question 356

Drag and Drop Question
A security consultant is considering authentication options for a financial institution. The following authentication options are available security mechanism to the appropriate use case. Options may be used once.

Question 357

A multi-national company has a highly mobile workforce and minimal IT infrastructure. The company utilizes a BYOD and social media policy to integrate presence technology into global collaboration tools by individuals and teams. As a result of the dispersed employees and frequent international travel, the company is concerned about the safety of employees and their families when moving in and out of certain countries.
Which of the following could the company view as a downside of using presence technology?

A.Insider threat

B.Network reconnaissance

C.Physical security

D.Industrial espionage

Question 358

A company monitors the performance of all web servers using WMI. A network administrator informs the security engineer that web servers hosting the company's client-facing portal are running slowly today.
After some investigation, the security engineer notices a large number of attempts at enumerating host information via SNMP from multiple IP addresses. Which of the following would be the BEST technique for the security engineer to employ in an attempt to prevent reconnaissance activity?

A.Install a HIPS on the web servers

B.Disable inbound traffic from offending sources

C.Disable SNMP on the web servers

D.Install anti-DDoS protection in the DMZ

Question 359

A vulnerability scanner report shows that a client-server host monitoring solution operating in the credit card corporate environment is managing SSL sessions with a weak algorithm which does not meet corporate policy. Which of the following are true statements? (Select TWO).

A.The X509 V3 certificate was issued by a non trusted public CA.

B.The client-server handshake could not negotiate strong ciphers.

C.The client-server handshake is configured with a wrong priority.

D.The client-server handshake is based on TLS authentication.

E.The X509 V3 certificate is expired.

F.The client-server implements client-server mutual authentication with different certificates.

Question 360

The Chief Executive Officer (CEO) of a large prestigious enterprise has decided to reduce business costs by outsourcing to a third party company in another country. Functions to be outsourced include: business analysts, testing, software development and back office functions that deal with the processing of customer data. The Chief Risk Officer (CRO) is concerned about the outsourcing plans. Which of the following risks are MOST likely to occur if adequate controls are not implemented?

A.Geographical regulation issues, loss of intellectual property and interoperability agreement issues

B.Improper handling of client data, interoperability agreement issues and regulatory issues

C.Cultural differences, increased cost of doing business and divestiture issues

D.Improper handling of customer data, loss of intellectual property and reputation damage

Other Version: 6554CompTIA.CAS-003.v2022-08-15.q472; 4322CompTIA.CAS-003.v2022-05-05.q206; 2991CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 100Oracle.1z0-1196-25.v2025-09-12.q18; 100NetworkAppliance.NS0-162.v2025-09-12.q86; 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 173TheSecOpsGroup.CNSP.v2025-09-08.q20; 240CFAInstitute.ESG-Investing.v2025-09-08.q173; 236PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 356

Question 357

Question 358

Question 359

Question 360

Download PDF File