Free Access CuramSoftware.CS0-002.v2024-02-05.q218 Practice Test (Page 5)

Question 16

A security analyst needs to provide the development learn with secure connectivity from the corporate network to a three-tier cloud environment. The developers require access to servers in all three tiers in order to perform various configuration tasks. Which of the following technologies should the analyst implement to provide secure transport?

A.CASB

B.Federation

C.VPN

D.VPC

Question 17

An incident response team is responding to a breach of multiple systems that contain PII and PHI. Disclosing the incident to external entities should be based on:

A.the communication plan

B.senior management's guidance

C.the responder's discretion

D.the public relations policy

Question 18

A security analyst is reviewing the following log from an email security service.

Which of the following BEST describes the reason why the email was blocked?

A.The IP address and the remote server name are the same.

B.The IP address was blacklisted.

C.The To address is invalid.

D.The From address is invalid.

E.The email originated from the www.spamfilter.org URL.

Question 19

A Chief Executive Officer (CEO) is concerned about the company's intellectual property being leaked to competitors. The security team performed an extensive review but did not find any indication of an outside breach. The data sets are currently encrypted using the Triple Data Encryption Algorithm. Which of the following courses of action is appropriate?

A.Limit all access to the sensitive data based on geographic access requirements with strict role-based access controls.

B.Enable data masking and reencrypt the data sets using AES-256.

C.Ensure the data is correctly classified and labeled, and that DLP rules are appropriate to prevent disclosure.

D.Use data tokenization on sensitive fields, reencrypt the data sets using AES-256, and then create an MD5 hash.

Question 20

A risk assessment concludes that the perimeter network has the highest potential for compromise by an attacker, and it is labeled as a critical risk environment. Which of the following is a valid compensating control to reduce the volume of valuable information in the perimeter network that an attacker could gain using active reconnaissance techniques?

A.A control that demonstrates that all systems authenticate using the approved authentication method

B.A control that demonstrates that access to a system is only allowed by using SSH

C.A control that demonstrates that firewall rules are peer reviewed for accuracy and approved before deployment

D.A control that demonstrates that the network security policy is reviewed and updated yearly

Other Version: 2988CompTIA.CS0-002.v2025-03-13.q112; 3969CompTIA.CS0-002.v2024-10-25.q354; 1515CompTIA.CS0-002.v2024-09-17.q264; 2915CuramSoftware.CS0-002.v2023-02-13.q163; 5096CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15495CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 257PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 366Nokia.4A0-113.v2026-05-01.q69; 402EC-COUNCIL.312-49v11.v2026-04-30.q214; 319Microsoft.MB-820.v2026-04-30.q101; 251Salesforce.MC-202.v2026-04-30.q57; 294BICSI.INSTC_V8.v2026-04-29.q53; 421NMLS.MLO.v2026-04-28.q82; 281NCARB.Project-Management.v2026-04-28.q27; 500EMC.D-AV-DY-23.v2026-04-27.q184; 1320ServiceNow.CSA.v2026-04-27.q483

Question 16

Question 17

Question 18

Question 19

Question 20

Download PDF File