Lead4Pass CAS-004 Dumps contains 406 latest exam questions and answers, covering more than 90% of CompTIA CAS-004 “CompTIA Advanced Security Practitioner (CASP+)” actual exam questions! For your best Exam Solutions.

Lead4Pass CAS-004 exam questions and answers are updated throughout the year! Guaranteed to be available anytime! Download CAS-004 Dumps: https://www.leads4pass.com/cas-004.html
One-time use 365 days free update! You can also choose the learning method that suits you according to your learning habits: PDF and VCE learning formats are provided to help you learn easily and pass CompTIA CAS-004 CASP+ Exam successfully.

Here you can always get more: Lead4Pass CAS-004 dumps page provides download free Demo for you to experience, you can also participate in the following online practice tests

Latest CompTIA CAS-004 dumps Exam Questions

From	Number of exam questions	Associated certification	Last update	Online Download
Lead4Pass	13	CompTIA Advanced Security Practitioner	CAS-004 dumps	CAS-004 PDF

NEW QUESTION 1:

A company is migrating from company-owned phones to a BYOD strategy for mobile devices. The pilot program will start with the executive management team and be rolled out to the rest of the staff in phases. The company\’s Chief Financial Officer loses a phone multiple times a year.

Which of the following will MOST likely secure the data on the lost device?

A. Require a VPN to be active to access company data.

B. Set up different profiles based on the person\’s risk.

C. Remotely wipe the device.

D. Require MFA to access company applications.

Correct Answer: C

NEW QUESTION 2:

A review of the past year\’s attack patterns shows that attackers stopped reconnaissance after finding a susceptible system to compromise.

The company would like to find a way to use this information to protect the environment while
still gaining valuable attack information.

Which of the following would be BEST for the company to implement?

A. A WAF

B. An IDS

C. A SIEM

D. A honeypot

Correct Answer: D

Reference: https://www.kaspersky.com/resource-center/threats/what-is-a-honeypot

NEW QUESTION 3:

Leveraging cryptographic solutions to protect data that is in use ensures the data is encrypted:

A. when it is passed across a local network.

B. in memory during processing

C. when it is written to a system\’s solid-state drive.

D. by an enterprise hardware security module.

Correct Answer: B

NEW QUESTION 4:

A security analyst receives an alert from the SIEM regarding unusual activity on an authorized public SSH jump server.

To further investigate, the analyst pulls the event logs directly from /var/log/auth.log: graphic.ssh_auth_log.

Which of the following actions would BEST address the potential risks of the activity in the logs?

A. Alerting the misconfigured service account password

B. Modifying the AllowUsers configuration directive

C. Restricting external port 22 access

D. Implementing host-key preferences

Correct Answer: B

Reference: https://www.rapid7.com/blog/post/2017/10/04/how-to-secure-ssh-server-using- port-knocking-on-ubuntu-linux/

NEW QUESTION 5:

An organization wants to perform a scan of all its systems against best-practice security configurations.

Which of the following SCAP standards, when combined, will enable the organization to view each of the configuration checks in a machine-readable checklist format for fill automation? (Choose two.)

A. ARF

B. XCCDF

C. CPE

D. CVE

E. CVSS

F. OVAL

Correct Answer: BF

Reference: https://www.govinfo.gov/content/pkg/GOVPUB-C13-9ecd8eae582935c93d7f410e955dabb6/pdf/GOVPUB-C139ecd8eae582935c93d7f410e955dabb6.pdf (p.12)

NEW QUESTION 6:

A software company is developing an application in which data must be encrypted with a cipher that requires the following:

1.

Initialization vector
2.
Low latency
3.
Suitable for streaming

Which of the following ciphers should the company use?

A. Cipher feedback

B. Cipher block chaining message authentication code

C. Cipher block chaining

D. Electronic codebook

Correct Answer: C

Reference: https://www.sciencedirect.com/topics/computer-science/symmetric-cipher

NEW QUESTION 7:

Ann. a user, brings her laptop to an analyst after noticing it has been operating very slowly. The security analyst examines the laptop and obtains the following output: Which of the following will the analyst most likely use NEXT?

A. Process explorer

B. Vulnerability scanner

C. Antivirus

D. Network enumerator

Correct Answer: B

NEW QUESTION 8:

A company\’s product site recently had failed API calls, resulting in customers being unable to check out and purchase products. This type of failure could lead to the loss of customers and damage to the company\’s reputation in the market.

Which of the following should the company implement to address the risk of system unavailability?

A. User and entity behavior analytics

B. Redundant reporting systems

C. A self-healing system

D. Application controls

Correct Answer: D

NEW QUESTION 9:

A Chief Information Officer is considering migrating all company data to the cloud to save money on expensive SAN storage.

Which of the following is a security concern that will MOST likely need to be addressed during migration?

A. Latency

B. Data Exposure

C. Data loss

D. Data dispersion

Correct Answer: B

NEW QUESTION 10:

A company publishes several APIs for customers and is required to use keys to segregate customer data sets.

Which of the following would be the BEST to use to store customer keys?

A. A trusted platform module

B. A hardware security module

C. A localized key store

D. A public key infrastructure

Correct Answer: B

Reference: https://developer.android.com/studio/publish/app-signing

NEW QUESTION 11:

SIMULATION

A product development team has submitted code snippets for review prior to the release of INSTRUCTIONS.

Analyze the code snippets and then select one vulnerability and one fix for each code snippet If at any time you would like to bang back the initial state of the simulation, please click the Reset All button.

A. Check the answer in the explanation below.

Correct Answer: A

NEW QUESTION 12:

A security auditor needs to review the manner in which an entertainment streaming device operates The auditor is analyzing the output of a port scanning tool to determine the next steps in the security review. Given the following log output:

The best option for the auditor to use NEXT is:

A. a SCAP assessment

B. reverse engineering

C. fuzzing

D. network interception

Correct Answer: A

NEW QUESTION 13:

A company has decided to purchase a license for software that is used to operate a mission-critical process. The third-party developer is new to the industry but is delivering what the company needs at this time.

Which of the following BEST describes the reason why utilizing a source code escrow will reduce the operational risk to the company if the third party stops supporting the application?

A. The company will have access to the latest version to continue development.

B. The company will be able to force the third-party developer to continue support.

C. The company will be able to manage the third-party developer\’s development process.

D. The company will be paid by the third-party developer to hire a new development team.

Correct Answer: A

…

Lead4Pass CAS-004 Dumps contains 406 latest exam questions and answers, one-time use enjoys free updates for 365 days! It also provides PDF and VCE multiple learning formats to assist you in easily learning and passing the CompTIA CAS-004 CASP+ Exam!

Use CompTIA CAS-004 CASP+ Exam Solutions: Download CAS-004 dumps with PDF and VCE: https://www.leads4pass.com/cas-004.html, to help you pass the exam 100% successfully.