Free Preparation Discussions
MENU
CompTIA CAS-004 Exam
- Topic 1: Explain the impact of emerging technologies on enterprise security and privacy/ Given a scenario, analyze vulnerabilities and recommend risk mitigations
- Topic 2: Given a scenario, integrate software applications securely into an enterprise architecture/ Given a set of requirements, implement secure cloud and virtualization solutions
- Topic 3: Explain how cloud technology adoption impacts organizational security/ Explain the importance of business continuity and disaster recovery concepts
- Topic 4: Explain compliance frameworks and legal considerations, and their organizational impact/ Explain how cryptography and public key infrastructure (PKI) support security objectives and requirements
- Topic 5: Given a scenario, analyze the security requirements and objectives to provide the appropriate authentication and authorization controls/ Given a scenario, analyze indicators of compromise and formulate an appropriate response
- Topic 6: Explain the importance of forensic concepts/ Explain security considerations impacting specific sectors and operational technologies/ Given a business requirement, implement the appropriate cryptographic protocols and algorithms
- Topic 7: Given a scenario, implement data security techniques for securing enterprise architecture/ Given a set of requirements, apply the appropriate risk strategies
- Topic 8: Given a scenario, use the appropriate vulnerability assessment and penetration testing methods and tools/ Explain the importance of managing and mitigating vendor risk
- Topic 9: Given a scenario, troubleshoot issues with cryptographic implementations/ Given a scenario, analyze the security requirements and objectives to ensure an appropriate
- Topic 10: Given a scenario, configure and implement endpoint security controls/ Given a scenario, perform vulnerability management activities
Free CompTIA CAS-004 Exam Actual Questions
The questions for CAS-004 were last updated On Sep. 12, 2023
A cloud security architect has been tasked with finding a solution for hardening VMS. The solution must meet the following requirements:
* Data needs to be stored outside of the VMS.
* No unauthorized modifications to the VMS are allowed
* If a change needs to be done, a new VM needs to be deployed.
Which of the following is the BEST solution?
An immutable system is a system that does not change after it is deployed. Any changes or updates are done by creating a new system from a common image or template and replacing the old one. An immutable system meets the requirements of storing data outside of the VMs, preventing unauthorized modifications to the VMs, and deploying a new VM if a change needs to be done. An immutable system can improve the security, reliability, and consistency of the VMs by avoiding configuration drift, human errors, or malicious tampering. An immutable system can also simplify the deployment process and enable faster recovery from failures. Verified Reference:
https://cloudinfrastructureservices.co.uk/vm-types-for-devops-pets-vs-cattle-vs-immutable/
https://www.digitalocean.com/community/tutorials/what-is-immutable-infrastructure
A company is deploying multiple VPNs to support supplier connections into its extranet applications. The network security standard requires:
* All remote devices to have up-to-date antivirus
* An up-to-date and patched OS
Which of the following technologies should the company deploy to meet its security objectives? (Select TWO)_
city government's IT director was notified by the City council that the following cybersecurity requirements must be met to be awarded a large federal grant:
+ Logs for all critical devices must be retained for 365 days to enable monitoring and threat hunting.
+ All privileged user access must be tightly controlled and tracked to mitigate compromised accounts.
+ Ransomware threats and zero-day vulnerabilities must be quickly identified.
Which of the following technologies would BEST satisfy these requirements? (Select THREE).
A security architect is designing a solution for a new customer who requires significant security capabilities in its environment. The customer has provided the architect with the following set of requirements:
* Capable of early detection of advanced persistent threats.
* Must be transparent to users and cause no performance degradation.
+ Allow integration with production and development networks seamlessly.
+ Enable the security team to hunt and investigate live exploitation techniques.
Which of the following technologies BEST meets the customer's requirements for security capabilities?
Deception software can meet the customer's requirements for security capabilities because:
A bank is working with a security architect to find the BEST solution to detect database management system compromises. The solution should meet the following requirements:
Work at the application layer
Send alerts on attacks from both privileged and malicious users
Have a very low false positive
Which of the following should the architect recommend?
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Submit Cancel