Free CAS-004 Exam Braindumps (page: 62)

Page 62 of 140

A global organization's Chief Information Security Officer (CISO) has been asked to analyze the risks involved in a plan to move the organization's current MPLS-based WAN network to use commodity internet and SD-WAN hardware. The SD-WAN provider is currently highly regarded but is a regional provider.
Which of the following is MOST likely identified as a potential risk by the CISO?

  1. The SD-WAN provider would not be able to handle the organization's bandwidth requirements.
  2. The operating costs of the MPLS network are too high for the organization.
  3. The SD-WAN provider may not be able to support the required troubleshooting and maintenance.
  4. Internal IT staff will not be able to properly support remote offices after the migration.

Answer(s): C



A company has received threat intelligence about bad routes being advertised. The company has also been receiving reports of degraded internet activity.
When looking at the routing table on the edge router, a security engineer discovers the following:
Which of the following can the company implement to prevent receiving bad routes from peers, while still allowing dynamic updates?

  1. OSPF prefix list
  2. BGP prefix list
  3. EIGRP prefix list
  4. DNS

Answer(s): B



A company has moved its sensitive workloads to the cloud and needs to ensure high availability and resiliency of its web-based application. The cloud architecture team was given the following requirements:
• The application must run at 70% capacity at all times
• The application must sustain DoS and DDoS attacks.
• Services must recover automatically.
Which of the following should the cloud architecture team implement? (Choose three.)

  1. Read-only replicas
  2. BCP
  3. Autoscaling
  4. WAF
  5. CDN
  6. Encryption
  7. Continuous snapshots
  8. Containerization

Answer(s): C,D,E



A security architect is implementing a web application that uses a database back end. Prior to production, the architect is concerned about the possibility of XSS attacks and wants to identify security controls that could be put in place to prevent these attacks.
Which of the following sources could the architect consult to address this security concern?

  1. SDLC
  2. OVAL
  3. IEEE
  4. OWASP

Answer(s): D



Page 62 of 140



Post your Comments and Discuss CompTIA CAS-004 exam with other Community members:

michrle23 commented on November 08, 2024
The purchase and download is very streamlined. I was able to quickly pay and download my course content. I have now started preparing. Once I finish my exam I will share my experience of the exam.
PAKISTAN
upvote

Fatima commented on June 17, 2024
The purchase and download is very streamlined. I was able to quickly pay and download my course content. I have now started preparing. Once I finish my exam I will share my experience of the exam.
EUROPEAN UNION
upvote

Sysadmin commented on April 22, 2024
How can you report incorrect answers? #27 is incorrect. First and foremost is always stop the spread, and then access the damage.
UNITED STATES
upvote

Gord commented on March 19, 2024
I hardly submit reivews... but the team at Xcerts.com really deserve one. They are super professional and the quality of their study guides are good. I highly recommend it anyone preparing for their exams.
UNITED KINGDOM
upvote

9eagles commented on April 07, 2023
on question 10 and so far 2 wrong answers as evident in the included reference link.
Anonymous
upvote

Change commented on December 11, 2023
Are some answers wrong
UNITED STATES
upvote

makeel commented on December 10, 2023
the questions are the same exist of another website
Anonymous
upvote

SecPro commented on October 29, 2023
Great dumps, helped me pass the exam.
Anonymous
upvote