Top Tips Of Most Up-to-date CAS-004 Dumps Questions

NEW QUESTION 1
A systems administrator is in the process of hardening the host systems before connecting to the network. The administrator wants to add protection to the boot loader to ensure the hosts are secure before the OS fully boots.
Which of the following would provide the BEST boot loader protection?

• A. TPM
• B. HSM
• C. PKI
• D. UEFI/BIOS

Answer: D

Explanation:
Reference: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-898217D4-689D-4EB5-866C-888353FE241C.html

NEW QUESTION 2
During a system penetration test, a security engineer successfully gained access to a shell on a Linux host as a standard user and wants to elevate the privilege levels.
Which of the following is a valid Linux post-exploitation method to use to accomplish this goal?

• A. Spawn a shell using sudo and an escape string such as sudo vim -c ‘!sh’.
• B. Perform ASIC password cracking on the host.
• C. Read the /etc/passwd file to extract the usernames.
• D. Initiate unquoted service path exploits.
• E. Use the UNION operator to extract the database schema.

Answer: C

Explanation:
Reference: https://docs.rapid7.com/insightvm/elevating-permissions/

NEW QUESTION 3
A company has decided to purchase a license for software that is used to operate a mission-critical process. The third-party developer is new to the industry but is delivering what the company needs at this time.
Which of the following BEST describes the reason why utilizing a source code escrow will reduce the operational risk to the company if the third party stops supporting the application?

• A. The company will have access to the latest version to continue development.
• B. The company will be able to force the third-party developer to continue support.
• C. The company will be able to manage the third-party developer’s development process.
• D. The company will be paid by the third-party developer to hire a new development team.

Answer: B

NEW QUESTION 4
Clients are reporting slowness when attempting to access a series of load-balanced APIs that do not require authentication. The servers that host the APIs are showing heavy CPU utilization. No alerts are found on the WAFs sitting in front of the APIs. Which of the following should a security engineer recommend to BEST remedy the performance issues in a timely manner?

• A. Implement rate limiting on the API.
• B. Implement geoblocking on the WAF.
• C. Implement OAuth 2.0 on the API.
• D. Implement input validation on the API.

Answer: C

NEW QUESTION 5
A satellite communications ISP frequently experiences outages and degraded modes of operation over one of its legacy satellite links due to the use of deprecated hardware and software. Three days per week, on average, a contracted company must follow a checklist of 16 different high-latency commands that must be run in serial to restore nominal performance. The ISP wants this process to be automated.
Which of the following techniques would be BEST suited for this requirement?

• A. Deploy SOAR utilities and runbooks.
• B. Replace the associated hardware.
• C. Provide the contractors with direct access to satellite telemetry data.
• D. Reduce link latency on the affected ground and satellite segments.

Answer: A

NEW QUESTION 6
A security analyst is reviewing network connectivity on a Linux workstation and examining the active TCP connections using the command line. Which of the following commands would be the BEST to run to view only active Internet connections?

• A. sudo netstat -antu | grep “LISTEN” | awk ‘{print$5}’
• B. sudo netstat -nlt -p | grep “ESTABLISHED”
• C. sudo netstat -plntu | grep -v “Foreign Address”
• D. sudo netstat -pnut -w | column -t -s $’\w’
• E. sudo netstat -pnut | grep -P ^tcp

Answer: B

Explanation:
Reference: https://www.codegrepper.com/code-examples/shell/netstat+find+port

NEW QUESTION 7
A developer wants to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users. Which of the following would be BEST for the developer to perform? (Choose two.)

• A. Utilize code signing by a trusted third party.
• B. Implement certificate-based authentication.
• C. Verify MD5 hashes.
• D. Compress the program with a password.
• E. Encrypt with 3DES.
• F. Make the DACL read-only.

Answer: AB

NEW QUESTION 8
During a remodel, a company’s computer equipment was moved to a secure storage room with cameras positioned on both sides of the door. The door is locked using a card reader issued by the security team, and only the security team and department managers have access to the room. The company wants to be able to identify any unauthorized individuals who enter the storage room by following an authorized employee.
Which of the following processes would BEST satisfy this requirement?

• A. Monitor camera footage corresponding to a valid access request.
• B. Require both security and management to open the door.
• C. Require department managers to review denied-access requests.
• D. Issue new entry badges on a weekly basis.

Answer: A

Explanation:
Reference: https://www.getkisi.com/access-control

NEW QUESTION 9
A disaster recovery team learned of several mistakes that were made during the last disaster recovery parallel test. Computational resources ran out at 70% of restoration of critical services.
Which of the following should be modified to prevent the issue from reoccurring?

• A. Recovery point objective
• B. Recovery time objective
• C. Mission-essential functions
• D. Recovery service level

Answer: B

Explanation:
Reference: https://www.nakivo.com/blog/disaster-recovery-in-cloud-computing/

NEW QUESTION 10
A company is preparing to deploy a global service.
Which of the following must the company do to ensure GDPR compliance? (Choose two.)

• A. Inform users regarding what data is stored.
• B. Provide opt-in/out for marketing messages.
• C. Provide data deletion capabilities.
• D. Provide optional data encryption.
• E. Grant data access to third parties.
• F. Provide alternative authentication techniques.

Answer: AB

Explanation:
Reference: https://gdpr.eu/compliance-checklist-us-companies/

NEW QUESTION 11
Due to locality and budget constraints, an organization’s satellite office has a lower bandwidth allocation than other offices in the organization. As a result, the local security infrastructure staff is assessing architectural options that will help preserve network bandwidth and increase speed to both internal and external resources while not sacrificing threat visibility.
Which of the following would be the BEST option to implement?

• A. Distributed connection allocation
• B. Local caching
• C. Content delivery network
• D. SD-WAN vertical heterogeneity

Answer: C

NEW QUESTION 12
An organization is preparing to migrate its production environment systems from an on-premises environment to a cloud service. The lead security architect is concerned that the organization's current methods for addressing risk may not be possible in the cloud environment.
Which of the following BEST describes the reason why traditional methods of addressing risk may not be possible in the cloud?

• A. Migrating operations assumes the acceptance of all risk.
• B. Cloud providers are unable to avoid risk.
• C. Specific risks cannot be transferred to the cloud provider.
• D. Risks to data in the cloud cannot be mitigated.

Answer: C

Explanation:
Reference: https://arxiv.org/ftp/arxiv/papers/1303/1303.4814.pdf

NEW QUESTION 13
A small company needs to reduce its operating costs. vendors have proposed solutions, which all focus on management of the company’s website and services. The Chief information Security Officer (CISO) insist all available resources in the proposal must be dedicated, but managing a private cloud is not an option .
Which of the following is the BEST solution for this company?

• A. Community cloud service model
• B. Multinency SaaS
• C. Single-tenancy SaaS
• D. On-premises cloud service model

Answer: A

NEW QUESTION 14
A security analyst is performing a vulnerability assessment on behalf of a client. The analyst must define what constitutes a risk to the organization. Which of the following should be the analyst’s FIRST action?

• A. Create a full inventory of information and data assets.
• B. Ascertain the impact of an attack on the availability of crucial resources.
• C. Determine which security compliance standards should be followed.
• D. Perform a full system penetration test to determine the vulnerabilities.

Answer: C

NEW QUESTION 15
An organization is implementing a new identity and access management architecture with the following objectives: Supporting MFA against on-premises infrastructure
Improving the user experience by integrating with SaaS applications
Applying risk-based policies based on location Performing just-in-time provisioning Which of the following authentication protocols should the organization implement to support these requirements?

• A. Kerberos and TACACS
• B. SAML and RADIUS
• C. OAuth and OpenID
• D. OTP and 802.1X

Answer: A

Explanation:
Reference: https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/migrate-application-authentication-toazure-active-directory

NEW QUESTION 16
A developer is creating a new mobile application for a company. The application uses REST API and TLS 1.2 to communicate securely with the external back- end server. Due to this configuration, the company is concerned about HTTPS interception attacks.
Which of the following would be the BEST solution against this type of attack?

• A. Cookies
• B. Wildcard certificates
• C. HSTS
• D. Certificate pinning

Answer: C

Explanation:
Reference: https://cloud.google.com/security/encryption-in-transit

NEW QUESTION 17
Which of the following terms refers to the delivery of encryption keys to a CASB or a third-party entity?

• A. Key sharing
• B. Key distribution
• C. Key recovery
• D. Key escrow

Answer: B

Explanation:
Reference: https://www.open.edu/openlearn/ocw/mod/oucontent/view.php?id=48322§ion=1.3

NEW QUESTION 18
An organization recently experienced a ransomware attack. The security team leader is concerned about the attack reoccurring. However, no further security measures have been implemented.
Which of the following processes can be used to identify potential prevention recommendations?

• A. Detection
• B. Remediation
• C. Preparation
• D. Recovery

Answer: A

NEW QUESTION 19
A business stores personal client data of individuals residing in the EU in order to process requests for mortgage loan approvals. Which of the following does the business’s IT manager need to consider?

• A. The availability of personal data
• B. The right to personal data erasure
• C. The company’s annual revenue
• D. The language of the web application

Answer: B

Explanation:
Reference: https://gdpr.eu/right-to-beforgotten/#:~:text=Also%20known%20as%20the%20right,to%20delete%20their%20personal%20data.&text=The%20General%20Data%20Protection%20Regulation,collected%2C%20processed%2C%20and%20erased

NEW QUESTION 20
A company’s claims processed department has a mobile workforce that receives a large number of email submissions from personal email addresses. An employees recently received an email that approved to be claim form, but it installed malicious software on the employee’s laptop when was opened.

• A. Impalement application whitelisting and add only the email client to the whitelist for laptop in the claims processing department.
• B. Required all laptops to connect to the VPN before accessing email.
• C. Implement cloud-based content filtering with sandboxing capabilities.
• D. Install a mail gateway to scan incoming messages and strip attachments before they reach the mailbox.

Answer: C

NEW QUESTION 21
......