Most Recent CompTIA CAS-004 Exam Questions & Answers

Prepare for the CompTIA Advanced Security Practitioner (CASP+) Exam exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the CompTIA CAS-004 exam and achieve success.

The questions for CAS-004 were last updated on Jan 5, 2025.

Viewing page 1 out of 112 pages.
Viewing questions 1-5 out of 558 questions

Get All 558 Questions & Answers

Question No. 1

A recent audit discovered that multiple employees had been using their badges to walk through the secured data center to get to the employee break room. Most of the employees were given access during a previous project, but the access was not removed in a timely manner when the project was complete. Which of the following would reduce the likelihood of this scenario occurring again?

ACreate an automated quarterly attestation process that requires management approval for data center access and removes unapproved access.

BRequire all employees to sign an AUP that prohibits accessing the data center without an active service ticket number.

CRemove all access to the data center badge readers and only re-add employees with a valid business purpose for entering the floor.

DImplement time-of-day restrictions on the data center badge readers and create automated alerts for unapproved swipe attempts.

Show Answer

Correct Answer: A

Implementing an automated quarterly attestation process ensures that access is reviewed and approved regularly. This prevents unauthorized or unnecessary access from persisting over time, aligning with CASP+ objective 1.6, which emphasizes continuous access control monitoring.

Question No. 2

A company's SOC has received threat intelligence about an active campaign utilizing a specific vulnerability. The company would like to determine whether it is vulnerable to this active campaign.

Which of the following should the company use to make this determination?

AThreat hunting

BA system penetration test

CLog analysis within the SIEM tool

DThe Cyber Kill Chain

Show Answer

Correct Answer: B

The security analyst should remove the cipher TLS_DHE_DSS_WITH_RC4_128_SHA to support the business requirements, as it is considered weak and vulnerable to on-path attacks. RC4 is an outdated stream cipher that has been deprecated by major browsers and protocols due to its flaws and weaknesses. The other ciphers are more secure and compliant with secure-by-design principles and PCI DSS. Verified Reference: https://www.comptia.org/blog/what-is-a-cipher https://partners.comptia.org/docs/default-source/resources/casp-content-guide

Question No. 3

A security analyst is assessing a new application written in Java. The security analyst must determine which vulnerabilities exist during runtime. Which of the following would provide the most exhaustive list of vulnerabilities while meeting the objective?

AInput validation

BDynamic analysis

CSide-channel analysis

DFuzz testing

EStatic analysis

Show Answer

Correct Answer: B

Step by Step

Dynamic analysis involves testing the application while it is running to identify vulnerabilities present during execution, providing the most exhaustive runtime vulnerability detection.

Input validation is a specific security control, not a method for exhaustive testing.

Side-channel analysis examines unintended information leakage but does not comprehensively assess runtime vulnerabilities.

Fuzz testing is a specific technique within dynamic analysis but does not ensure exhaustive coverage.

Static analysis examines code without execution, missing runtime-specific vulnerabilities.

Question No. 4

The Chief information Officer (CIO) wants to implement enterprise mobility throughout the organization. The goal is to allow employees access to company resources. However the CIO wants the ability to enforce configuration settings, manage data, and manage both company-owned and personal devices. Which of the following should the CIO implement to achieve this goal?

ABYOO

BCYOD

CCOPE

DMDM

Show Answer

Correct Answer: A

Question No. 5

A user in the finance department uses a laptop to store a spreadsheet that contains confidential financial information for the company. Which of the following would be the best way to protect the file while the user brings the laptop between locations? (Select two).

AEncrypt the hard drive with full disk encryption.

BBack up the file to an encrypted flash drive.

CPlace an ACL on the file to only allow access to specified users.

DStore the file in the user profile.

EPlace an ACL on the file to deny access to everyone.

FEnable access logging on the file.

Show Answer

Correct Answer: A, B

To protect confidential financial information on a laptop that is frequently moved between locations, full disk encryption (FDE) is a strong security measure that ensures that all data on the hard drive is encrypted. This means that if the laptop is lost or stolen, the data remains inaccessible without the encryption key. Additionally, backing up the file to an encrypted flash drive provides an extra layer of security and ensures that there is a secure copy of the file in case the laptop is compromised.

Unlock All Questions for CompTIA CAS-004 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 558 Questions & Answers