Free Access CompTIA.CS0-002.v2024-10-25.q354 Practice Test (Page 36)

Question 171

A security analyst needs to reduce the overall attack surface.
Which of the following infrastructure changes should the analyst recommend?

A.Implement a cloud-based architecture.

B.Air gap sensitive systems.

C.Implement a honeypot.

D.Increase the network segmentation.

Question 172

A product security analyst has been assigned to evaluate and validate a new products security capabilities Part ot the evaluation involves reviewing design changes at specific intervals tor security deficiencies recommending changes and checking for changes at the next checkpoint Which of the following BEST defines the activity being conducted?

A.User acceptance testing

B.Stress testing

C.Code review

D.Security regression testing

Question 173

A vulnerability assessment solution is hosted in the cloud This solution will be used as an accurate inventory data source for both the configuration management database and the governance nsk and compliance tool An analyst has been asked to automate the data acquisition Which of the following would be the BEST way to acqutre the data'

A.API

B.SOAR

C.CSV export

D.Machine learning

Question 174

A security analyst reviews the following aggregated output from an Nmap scan and the border firewall ACL:

Which of the following should the analyst reconfigure to BEST reduce organizational risk while maintaining current functionality?

A.PC1

B.Firewall

C.Server1

D.Server2

E.PC2

Question 175

While investigating an incident in a company's SIEM console, a security analyst found hundreds of failed SSH login attempts, which all occurred in rapid succession. The failed attempts were followed by a successful login on the root user Company policy allows systems administrators to manage their systems only from the company's internal network using their assigned corporate logins. Which of the following are the BEST actions the analyst can take to stop any further compromise? (Select TWO).

A.Configure /etc/passwd to deny root logins and restart the SSHD service.

B.Reset the passwords for all accounts on the affected system.

C.Add a rule on the network IPS to block SSH user sessions

D.Add a rule on the affected system to block access to port TCP/22.

E.Add a rule on the perimeter firewall to block the source IP address.

F.Configure /etc/sshd_config to deny root logins and restart the SSHD service.

Other Version: 2915CompTIA.CS0-002.v2025-03-13.q112; 1419CompTIA.CS0-002.v2024-09-17.q264; 1685CuramSoftware.CS0-002.v2024-02-05.q218; 2848CuramSoftware.CS0-002.v2023-02-13.q163; 5031CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15395CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 203PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 302Nokia.4A0-113.v2026-05-01.q69; 263EC-COUNCIL.312-49v11.v2026-04-30.q214; 230Microsoft.MB-820.v2026-04-30.q101; 212Salesforce.MC-202.v2026-04-30.q57; 207BICSI.INSTC_V8.v2026-04-29.q53; 336NMLS.MLO.v2026-04-28.q82; 245NCARB.Project-Management.v2026-04-28.q27; 466EMC.D-AV-DY-23.v2026-04-27.q184; 1125ServiceNow.CSA.v2026-04-27.q483

Question 171

Question 172

Question 173

Question 174

Question 175

Download PDF File