CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. CAS-003

Free CAS-003 Exam Braindumps (page: 60)

Page 60 of 137
PDF with 683 Questions

Following a recent network intrusion, a company wants to determine the current security awareness of all of its employees. Which of the following is the BEST way to test awareness?

  1. Conduct a series of security training events with comprehensive tests at the end
  2. Hire an external company to provide an independent audit of the network security posture
  3. Review the social media of all employees to see how much proprietary information is shared
  4. Send an email from a corporate account, requesting users to log onto a website with their enterprise account

Answer(s): D



A company’s security policy states any remote connections must be validated using two forms of network- based authentication. It also states local administrative accounts should not be used for any remote access. PKI currently is not configured within the network. RSA tokens have been provided to all employees, as well as a mobile application that can be used for 2FA authentication. A new NGFW has been installed within the network to provide security for external connections, and the company has decided to use it for VPN connections as well. Which of the following should be configured? (Choose two.)

  1. Certificate-based authentication
  2. TACACS+
  3. 802.1X
  4. RADIUS
  5. LDAP
  6. Local user database

Answer(s): D,E



The finance department has started to use a new payment system that requires strict PII security restrictions on various network devices. The company decides to enforce the restrictions and configure all devices appropriately. Which of the following risk response strategies is being used?

  1. Avoid
  2. Mitigate
  3. Transfer
  4. Accept

Answer(s): B



A security administrator is updating a company’s SCADA authentication system with a new application. To ensure interoperability between the legacy system and the new application, which of the following stakeholders should be involved in the configuration process before deployment? (Choose two.)

  1. Network engineer
  2. Service desk personnel
  3. Human resources administrator
  4. Incident response coordinator
  5. Facilities manager
  6. Compliance manager

Answer(s): A,E



Page 60 of 137



Post your Comments and Discuss CompTIA CAS-003 exam with other Community members:

Nathan commented on April 20, 2020
I appreicate that you provide the Xengine software for free. But are you planning to keep it free! I really hope so!
GERMANY
upvote