CAS-002 CompTIA Advanced Security Practitioner Exam - 1

Sample Questions:

An auditor of suspected security accounts two employees have devised a plan to steal money from the company. While an employee submits purchase orders for personal items, the other employee approves these purchase orders. The auditor contacted the director of human resources with tips on how to spot these illegal activities. Which of the following should the director of human resources to implement to identify employees involved in these activities and reduce the risk of this activity occurring in the future?

background check

job rotation

least privilege

procedures severance

None

During an incident involving the leading database company, a team of forensic experts has taken to respond to the violation. The team has the task of collecting forensic evidence from the company's database server. Which of the following is the correct order in which the scientific team should commit?

leadership notification, fix the scene, capture volatile memory, non-volatile memory acquisition, chain of custody implementation, and analyze the original media.

Take inventory, secure the scene, the capture of RAM, the capture had cars, implement the chain of custody, document and analyze the data.

Implement chain of custody, inventory, secure the scene, capturing volatile memory and non-volatile, and document the results.

Secure the scene, make an inventory, volatile memory collection, capture non-volatile storage, document and implement the chain of custody.

None

A security officer has noticed an increase in the number of workstations employees are the malware infection. The company delivers an enterprise antivirus system and a web content filter that blocks access to malicious Web sites where malware files can be downloaded. In addition, the company implements technical measures to disable external storage. Which of the following is a technical control that the security administrator should implement next reduce malware infections?

Implement an acceptable use policy that addresses malware downloads.

Implement a network access control system with a persistent agent.

Apply mandatory training of security awareness for all employees and contractors.

storage software in the cloud-based blocks on the corporate network.

None

new IT company hired a security consultant to implement a remote access system that will allow employees to telecommute from home using either company issued as well as personal computing devices, including mobile devices. The company wants a flexible system to ensure the confidentiality and integrity of data in transit to the company internally developed GUI application. Company policy forbids employees to have administrative rights on company issued devices. Which of the following remote access solutions has the lowest technical complexity?

RDP server

Based on VPN client

IPSec

Jumping Box

None