Free Access CompTIA.CAS-004.v2022-06-25.q79 Practice Test (Page 6)

Question 21

A security engineer was auditing an organization's current software development practice and discovered that multiple open-source libraries were Integrated into the organization's software. The organization currently performs SAST and DAST on the software it develops.
Which of the following should the organization incorporate into the SDLC to ensure the security of the open-source libraries?

A.Implement the SDLC security guidelines.

B.Perform additional SAST/DAST on the open-source libraries.

C.Track the library versions and monitor the CVE website for related vulnerabilities.

D.Perform unit testing of the open-source libraries.

Question 22

A security engineer needs to implement a solution to increase the security posture of user endpoints by providing more visibility and control over local administrator accounts. The endpoint security team is overwhelmed with alerts and wants a solution that has minimal operational burdens. Additionally, the solution must maintain a positive user experience after implementation.
Which of the following is the BEST solution to meet these objectives?

A.Implement Privileged Access Management (PAM), keep users in the local administrators group, and enable local administrator account monitoring.

B.Implement EDR, keep users in the local administrators group, and enable user behavior analytics.

C.Implement PAM, remove users from the local administrators group, and prompt users for explicit approval when elevated privileges are required.

D.Implement EDR, remove users from the local administrators group, and enable privilege escalation monitoring.

Question 23

An organization is preparing to migrate its production environment systems from an on-premises environment to a cloud service. The lead security architect is concerned that the organization's current methods for addressing risk may not be possible in the cloud environment.
Which of the following BEST describes the reason why traditional methods of addressing risk may not be possible in the cloud?

A.Cloud providers are unable to avoid risk.

B.Specific risks cannot be transferred to the cloud provider.

C.Risks to data in the cloud cannot be mitigated.

D.Migrating operations assumes the acceptance of all risk.

Question 24

A security analyst notices a number of SIEM events that show the following activity:

Which of the following response actions should the analyst take FIRST?

A.Disable local administrator privileges on the endpoints.

B.Restart Microsoft Windows Defender.

C.Configure the forward proxy to block 40.90.23.154.

D.Disable powershell.exe on all Microsoft Windows endpoints.

Question 25

A Chief information Security Officer (CISO) has launched to create a rebuts BCP/DR plan for the entire company. As part of the initiative , the security team must gather data supporting s operational importance for the applications used by the business and determine the order in which the application must be back online. Which of the following be the FIRST step taken by the team?

A.Implement replication of all servers and application data to back up detacenters that are geographically from the central datacenter and release an upload BPA to all clients.

B.Create an SLA for each application that states when the application will come back online and distribute this information to the business units.

C.Have each business unit conduct a BIA and categories the application according to the cumulative data gathered.

D.Perform a review of all policies an procedures related to BGP a and DR and created an educated educational module that can be assigned to at employees to provide training on BCP/DR events.

Premium Bundle

Newest CAS-004 Exam PDF Dumps shared by BraindumpsPass.com for Helping Passing CAS-004 Exam! BraindumpsPass.com now offer the updated CAS-004 exam dumps, the BraindumpsPass.com CAS-004 exam questions have been updated and answers have been corrected get the latest BraindumpsPass.com CAS-004 pdf dumps with Exam Engine here:

Access CAS-004 Premium Version

(620 Q&As Dumps, 40%OFF Special Discount: Exam-Tests)

Other Version: 1097CompTIA.CAS-004.v2025-06-21.q202; 1236CompTIA.CAS-004.v2023-08-04.q126; 1381CompTIA.CAS-004.v2023-03-06.q93; 1208CompTIA.CAS-004.v2023-02-23.q88; 1005CompTIA.CAS-004.v2023-02-07.q68; 1875CompTIA.CAS-004.v2022-11-07.q113; 1616CompTIA.CAS-004.v2022-04-29.q42

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50