CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. CAS-004

Free CAS-004 Exam Braindumps (page: 54)

Page 54 of 140
PDF with 555 Questions

An auditor needs to scan documents at rest for sensitive text. These documents contain both text and images.
Which of the following software functionalities must be enabled in the DLP solution for the auditor to be able to fully read these documents? (Choose two.)

  1. Document interpolation
  2. Regular expression pattern matching
  3. Optical character recognition functionality
  4. Baseline image matching
  5. Advanced rasterization
  6. Watermarking

Answer(s): B,C



A security analyst is performing a review of a web application. During testing as a standard user, the following error log appears:
Which of the following BEST describes the analyst's findings and a potential mitigation technique?

  1. The findings indicate unsecure references. All potential user input needs to be properly sanitized.
  2. The findings indicate unsecure protocols All cookies should be marked as HttpOnly.
  3. The findings indicate information disclosure. The displayed error message should be modified.
  4. The findings indicate a SQL injection. The database needs to be upgraded.

Answer(s): C



A local university that has a global footprint is undertaking a complete overhaul of its website and associated systems Some of the requirements are:
• Handle an increase in customer demand of resources
• Provide quick and easy access to information
• Provide high-quality streaming media
• Create a user-friendly interface
Which of the following actions should be taken FIRST?

  1. Deploy high-availability web servers.
  2. Enhance network access controls.
  3. Implement a content delivery network.
  4. Migrate to a virtualized environment.

Answer(s): C



In order to save money, a company has moved its data to the cloud with a low-cost provider. The company did not perform a security review prior to the move; however, the company requires all of its data to be stored within the country where the headquarters is located. A new employee on the security team has been asked to evaluate the current provider against the most important requirements. The current cloud provider that the company is using offers:
• Only multitenant cloud hosting
• Minimal physical security
• Few access controls
• No access to the data center
The following information has been uncovered:
• The company is located in a known floodplain. which flooded last year.
• Government regulations require data to be stored within the country.
Which of the following should be addressed FIRST?

  1. Update the disaster recovery plan to account for natural disasters.
  2. Establish a new memorandum of understanding with the cloud provider.
  3. Establish a new service-level agreement with the cloud provider.
  4. Provision services according to the appropriate legal requirements.

Answer(s): D



Page 54 of 140



Post your Comments and Discuss CompTIA CAS-004 exam with other Community members:

michrle23 commented on November 08, 2024
The purchase and download is very streamlined. I was able to quickly pay and download my course content. I have now started preparing. Once I finish my exam I will share my experience of the exam.
PAKISTAN
upvote

Fatima commented on June 17, 2024
The purchase and download is very streamlined. I was able to quickly pay and download my course content. I have now started preparing. Once I finish my exam I will share my experience of the exam.
EUROPEAN UNION
upvote

Sysadmin commented on April 22, 2024
How can you report incorrect answers? #27 is incorrect. First and foremost is always stop the spread, and then access the damage.
UNITED STATES
upvote

Gord commented on March 19, 2024
I hardly submit reivews... but the team at Xcerts.com really deserve one. They are super professional and the quality of their study guides are good. I highly recommend it anyone preparing for their exams.
UNITED KINGDOM
upvote

9eagles commented on April 07, 2023
on question 10 and so far 2 wrong answers as evident in the included reference link.
Anonymous
upvote

Change commented on December 11, 2023
Are some answers wrong
UNITED STATES
upvote

makeel commented on December 10, 2023
the questions are the same exist of another website
Anonymous
upvote

SecPro commented on October 29, 2023
Great dumps, helped me pass the exam.
Anonymous
upvote