Free Access CompTIA.CS0-002.v2024-09-17.q264 Practice Test (Page 44)

Question 211

A cybersecurity analyst needs to Implement controls that will reduce the attack surface of a web server. Which of the following is the best proactive control?

A.Disabling unused modules

B.Installing a host-based IDS

C.Sending logs to a remote server

D.Performing vulnerability scans

Question 212

A security team has begun updating the risk management plan incident response plan and system security plan to ensure compliance with secunty review guidelines Which of the (olowing can be executed by internal managers to simulate and validate the proposed changes'?

A.Internal management review

B.Control assessment

C.Tabletop exercise

D.Peer review

Question 213

The majority of a company's employees have stated they are unable to perform their job duties due to outdated workstations, so the company has decided to institute BYOD. Which of the following would a security analyst MOST likely recommend for securing the proposed solution?

A.A firewalled environment for client devices and a secure VDl for BYOO users

B.A Linux-based system and mandatory training on Linux for all BYOD users

C.802.1X lo enforce company policy on BYOD user hardware

D.A standardized anti-malware platform and a unified operating system vendor

Question 214

A large software company wants to move as source control and deployment pipelines into a cloud-computing environment. Due to the nature of the business management determines the recovery time objective needs to be within one hour. Which of the following strategies would put the company in the BEST position to achieve the desired recovery time?

A.Set up every cloud component with duplicated copies and auto scaling turned on

B.Create a duplicate copy on premises that can be used for failover in a disaster situation

C.Establish an alternate site with active replication to other regions

D.Configure a duplicate environment in the same region and load balance between both instances

Question 215

A security administrator recently deployed a virtual honeynet. The honeynet is not protected by the company's firewall, while all production networks are protected by a stateful firewall. Which of the following would BEST allow an external penetration tester to determine which one is the honeynet's network?

A.Packet analyzer

B.Fuzzer

C.Banner grab

D.TCP ACK scan

Other Version: 2914CompTIA.CS0-002.v2025-03-13.q112; 3825CompTIA.CS0-002.v2024-10-25.q354; 1660CuramSoftware.CS0-002.v2024-02-05.q218; 2845CuramSoftware.CS0-002.v2023-02-13.q163; 5026CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15389CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 201PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 298Nokia.4A0-113.v2026-05-01.q69; 253EC-COUNCIL.312-49v11.v2026-04-30.q214; 228Microsoft.MB-820.v2026-04-30.q101; 210Salesforce.MC-202.v2026-04-30.q57; 205BICSI.INSTC_V8.v2026-04-29.q53; 334NMLS.MLO.v2026-04-28.q82; 243NCARB.Project-Management.v2026-04-28.q27; 461EMC.D-AV-DY-23.v2026-04-27.q184; 1115ServiceNow.CSA.v2026-04-27.q483

Question 211

Question 212

Question 213

Question 214

Question 215

Download PDF File