Free Access CompTIA.CAS-004.v2023-02-23.q88 Practice Test (Page 12)

Question 51

A large telecommunications equipment manufacturer needs to evaluate the strengths of security controls in a new telephone network supporting first responders. Which of the following techniques would the company use to evaluate data confidentiality controls?

A.Code signing

B.Eavesdropping

C.RF sidelobe sniffing

D.On-path

E.Cryptanalysis

Question 52

A company is preparing to deploy a global service.
Which of the following must the company do to ensure GDPR compliance? (Choose two.)

A.Inform users regarding what data is stored.

B.Provide opt-in/out for marketing messages.

C.Provide data deletion capabilities.

D.Provide optional data encryption.

E.Grant data access to third parties.

F.Provide alternative authentication techniques.

Question 53

A company is outsourcing to an MSSP that performs managed detection and response services. The MSSP requires a server to be placed inside the network as a log aggregate and allows remote access to MSSP analyst. Critical devices send logs to the log aggregator, where data is stored for 12 months locally before being archived to a multitenant cloud. The data is then sent from the log aggregate to a public IP address in the MSSP datacenter for analysis.
A security engineer is concerned about the security of the solution and notes the following.
* The critical devise send cleartext logs to the aggregator.
* The log aggregator utilize full disk encryption.
* The log aggregator sends to the analysis server via port 80.
* MSSP analysis utilize an SSL VPN with MFA to access the log aggregator remotely.
* The data is compressed and encrypted prior to being achieved in the cloud.
Which of the following should be the engineer's GREATEST concern?

A.Network bridging from a remote access VPN

B.Encryption of data in transit

C.Multinancy and data remnants in the cloud

D.Hardware vulnerabilities introduced by the log aggregate server

Question 54

Due to locality and budget constraints, an organization's satellite office has a lower bandwidth allocation than other offices in the organization. As a result, the local security infrastructure staff is assessing architectural options that will help preserve network bandwidth and increase speed to both internal and external resources while not sacrificing threat visibility.
Which of the following would be the BEST option to implement?

A.Local caching

B.SD-WAN vertical heterogeneity

C.Distributed connection allocation

D.Content delivery network

Question 55

A security architect is given the following requirements to secure a rapidly changing enterprise with an increasingly distributed and remote workforce
* Cloud-delivered services
* Full network security stack
* SaaS application security management
* Minimal latency for an optimal user experience
* Integration with the cloud 1AM platform
Which of the following is the BEST solution?

A.Managed Security Service Provider (MSSP)

B.Routing and Remote Access Service (RRAS)

C.SASE

D.NGFW

Other Version: 1097CompTIA.CAS-004.v2025-06-21.q202; 1236CompTIA.CAS-004.v2023-08-04.q126; 1381CompTIA.CAS-004.v2023-03-06.q93; 1005CompTIA.CAS-004.v2023-02-07.q68; 1878CompTIA.CAS-004.v2022-11-07.q113; 2441CompTIA.CAS-004.v2022-06-25.q79; 1617CompTIA.CAS-004.v2022-04-29.q42

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 150Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50

Question 51

Question 52

Question 53

Question 54

Question 55

Download PDF File