Free Access CompTIA.CAS-004.v2023-02-23.q88 Practice Test (Page 17)

Question 76

An HVAC contractor requested network connectivity permission to remotely support/troubleshoot equipment issues at a company location. Currently, the company does not have a process that allows vendors remote access to the corporate network Which of the following solutions represents the BEST course of action to allow the contractor access?

A.Create a dedicated segment with no access to the corporate network Implement dedicated VPN hardware for vendor access

B.Establish a certification process for the vendor Allow certified vendors access to the VDI to monitor and maintain the HVAC equipment

C.Give the vendor a standard desktop PC to attach the equipment to Give the vendor access through the standard corporate VPN

D.Add the vendor's equipment to the existing network Give the vendor access through the standard corporate VPN

Question 77

A security team received a regulatory notice asking for information regarding collusion and pricing from staff members who are no longer with the organization. The legal department provided the security team with a list of search terms to investigate.
This is an example of:

A.due care.

B.e-discovery.

C.legal hold.

D.due intelligence

Question 78

A company Is adopting a new artificial-intelligence-based analytics SaaS solution. This Is the company's first attempt at using a SaaS solution, and a security architect has been asked to determine any future risks. Which of the following would be the GREATEST risk In adopting this solution?

A.The inability to obtain company data when migrating to another service

B.The inability to require the service provider process data in a specific country

C.The inability to assign access controls to comply with company policy

D.The inability to conduct security assessments against a service provider

Question 79

A cybersecurity analyst discovered a private key that could have been exposed.
Which of the following is the BEST way for the analyst to determine if the key has been compromised?

A.CRL

B.HSTS

C.OCSP

D.CSRs

Question 80

A company's Chief Information Security Officer is concerned that the company's proposed move to the cloud could lead to a lack of visibility into network traffic flow logs within the VPC.
Which of the following compensating controls would be BEST to implement in this situation?

A.UEBA

B.HIDS

C.EDR

D.SIEM

Other Version: 1097CompTIA.CAS-004.v2025-06-21.q202; 1236CompTIA.CAS-004.v2023-08-04.q126; 1390CompTIA.CAS-004.v2023-03-06.q93; 1009CompTIA.CAS-004.v2023-02-07.q68; 1890CompTIA.CAS-004.v2022-11-07.q113; 2447CompTIA.CAS-004.v2022-06-25.q79; 1617CompTIA.CAS-004.v2022-04-29.q42

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 150Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50

Question 76

Question 77

Question 78

Question 79

Question 80

Download PDF File