QUESTION: 101

Which of the following is the MOST important cloud-specific risk from the CSP's viewpoint?

Isolation control failure
Management plane breach
Insecure data deletion
Resource exhaustion

Answer(s): B

An organization is developing a disaster recovery plan that requires data to be backed up and available at a moment's notice.
Which of the following should the organization consider FIRST to address this requirement?

Implement a change management plan to ensure systems are using the appropriate versions.
Hire additional on-call staff to be deployed if an event occurs.
Design an appropriate warm site for business continuity.
Identify critical business processes and determine associated software and hardware requirements.

Answer(s): D

Reference:

https://searchdisasterrecovery.techtarget.com/definition/warm-site

Show Answer Next Question

QUESTION: 103

Leveraging cryptographic solutions to protect data that is in use ensures the data is encrypted:

when it is passed across a local network.
in memory during processing
when it is written to a system's solid-state drive.
by an enterprise hardware security module.

Answer(s): B

Show Answer Next Question

QUESTION: 104

A Chief Information Officer (CIO) wants to implement a cloud solution that will satisfy the following requirements:
-Support all phases of the SDLC.
-Use tailored website portal software.
-Allow the company to build and use its own gateway software.
-Utilize its own data management platform.
-Continue using agent-based security tools.
Which of the following cloud-computing models should the CIO implement?

SaaS
PaaS
MaaS
IaaS

Answer(s): B

Reference:

https://www.bmc.com/blogs/saas-vs-paas-vs-iaas-whats-the-difference-and-how-to-choose/

Show Answer Next Question

Free CompTIA CAS-004 Exam Questions (page: 27)

QUESTION: 101

QUESTION: 102

Reference:

QUESTION: 103

QUESTION: 104

Reference:

CAS-004 Exam Discussions & Posts