Free PassLeader CAS-002 Exam Dumps with VCE and PDF Download (Question 621 – Question 625)

PassLeader released the NEWEST CompTIA CAS-002 exam dumps recently! Both CAS-002 VCE dumps and CAS-002 PDF dumps are available on PassLeader, either CAS-002 VCE dumps or CAS-002 PDF dumps have the NEWEST CAS-002 exam questions in it, they will help you passing CompTIA CAS-002 exam easily! You can download the valid CAS-002 dumps VCE and PDF from PassLeader here: https://www.passleader.com/cas-002.html (900 Q&As Dumps)

Also, previewing the NEWEST PassLeader CAS-002 dumps online for free on Google Drive: https://drive.google.com/open?id=0B-ob6L_QjGLpenQtV3dLMDkyM0U

QUESTION 621
An IT administrator has been tasked by the Chief Executive Officer with implementing security using a single device based on the following requirements:
* Selective sandboxing of suspicious code to determine malicious intent.
* VoIP handling for SIP and H.323 connections.
* Block potentially unwanted applications.
Which of the following devices would BEST meet all of these requirements?

A.    UTM
B.    HIDS
C.    NIDS
D.    WAF
E.    HSM

Answer: A

QUESTION 622
The Chief Executive Officer (CEO) has asked the IT administrator to protect the externally facing web server from SQL injection attacks and ensure the backend database server is monitored for unusual behavior while enforcing rules to terminate unusual behavior. Which of the following would BEST meet the CEO’s requirements?

A.    WAF and DAM
B.    UTM and NIDS
C.    DAM and SIEM
D.    UTM and HSM
E.    WAF and SIEM

Answer: A

QUESTION 623
Which of the following is the information owner responsible for?

A.    Developing policies, standards, and baselines.
B.    Determining the proper classification levels for data within the system.
C.    Integrating security considerations into application and system purchasing decisions.
D.    Implementing and evaluating security controls by validating the integrity of the data.

Answer: B

QUESTION 624
An administrator’s company has recently had to reduce the number of Tier 3 help desk technicians available to support enterprise service requests. As a result, configuration standards have declined as administrators develop scripts to troubleshoot and fix customer issues. The administrator has observed that several default configurations have not been fixed through applied group policy or configured in the baseline. Which of the following are controls the administrator should recommend to the organization’s security manager to prevent an authorized user from conducting internal reconnaissance on the organization’s network? (Select THREE.)

A.    Network file system
B.    Disable command execution
C.    Port security
D.    TLS
E.    Search engine reconnaissance
F.    NIDS
G.    BIOS security
H.    HIDS
I.    IDM

Answer: BGI

QUESTION 625
An extensible commercial software system was upgraded to the next minor release version to patch a security vulnerability. After the upgrade, an unauthorized intrusion into the system was detected. The software vendor is called in to troubleshoot the issue and reports that all core components were updated properly. Which of the following has been overlooked in securing the system? (Select TWO.)

A.    The company’s IDS signatures were not updated.
B.    The company’s custom code was not patched.
C.    The patch caused the system to revert to http.
D.    The software patch was not cryptographically signed.
E.    The wrong version of the patch was used.
F.    Third-party plug-ins were not patched.

Answer: BF


Welcome to choose PassLeader CAS-002 dumps for 100% passing CompTIA CAS-002 exam: https://www.passleader.com/cas-002.html (900 Q&As VCE Dumps and PDF Dumps)

Also, previewing the NEWEST PassLeader CAS-002 dumps online for free on Google Drive: https://drive.google.com/open?id=0B-ob6L_QjGLpenQtV3dLMDkyM0U