After significant vulnerabilities and misconfigurations were found in numerous production web applications, a security manager identified the need to implement better development controls.Which of the following controls should be verified? (Choose two.)
Answer(s): A,E
An organization wants to arm its cybersecurity defensive suite automatically with intelligence on zero-day threats shortly after they emerge. Acquiring tools and services that support which of the following data standards would BEST enable the organization to meet this objective?
Answer(s): E
A financial institution’s information security officer is working with the risk management officer to determine what to do with the institution’s residual risk after all security controls have been implemented. Considering the institution’s very low risk tolerance, which of the following strategies would be BEST?
Answer(s): A
A large, public university has recently been experiencing an increase in ransomware attacks against computers connected to its network. Security engineers have discovered various staff members receiving seemingly innocuous files in their email that are being run. Which of the following would BEST mitigate this attack method?
Answer(s): B
Post your Comments and Discuss CompTIA CAS-003 exam with other Community members:
Nathan commented on April 20, 2020 I appreicate that you provide the Xengine software for free. But are you planning to keep it free! I really hope so! GERMANY upvote
Our website is free, but we have to fight against bots and content theft. We're sorry for the inconvenience caused by these security measures. You can access the rest of the CAS-003 content, but please register or login to continue.