Online Access Free CompTIA.CAS-003.v2021-10-13.q221 Practice Test (Page 33)

CAS-003 Exam Question 156

The latest independent research shows that cyber attacks involving SCADA systems grew an average of 15% per year in each of the last four years, but that this year's growth has slowed to around 7%. Over the same time period, the number of attacks against applications has decreased or stayed flat each year. At the start of the measure period, the incidence of PC boot loader or BIOS based attacks was negligible. Starting two years ago, the growth in the number of PC boot loader attacks has grown exponentially. Analysis of these trends would seem to suggest which of the following strategies should be employed?

A.Spending on SCADA protections should stay steady; application control spending should increase substantially and spending on PC boot loader controls should increase substantially.

B.Spending on SCADA security controls should stay steady; application control spending should decrease slightly and spending on PC boot loader protections should increase substantially.

C.Spending all controls should increase by 15% to start; spending on application controls should be suspended, and PC boot loader protection research should increase by 100%.

D.Spending on SCADA security controls should increase by 15%; application control spending should increase slightly, and spending on PC boot loader protections should remain steady.

CAS-003 Exam Question 157

An architect was recently hired by a power utility to increase the security posture of the company's power generation and distribution sites. Upon review, the architect identifies legacy hardware with highly vulnerable and unsupported software driving critical operations. These systems must exchange data with each other, be highly synchronized, and pull from the Internet time sources. Which of the following architectural decisions would BEST reduce the likelihood of a successful attack without harming operational capability?
(Choose two.)

A.Employ own stratum-0 and stratum-1 NTP servers

B.Isolate the systems on their own network

C.Configure the systems to use government-hosted NTP servers

D.Upgrade the software on critical systems

E.Install a firewall and IDS between systems and the LAN

CAS-003 Exam Question 158

A security engineer reviews the table below:

The engineer realizes there is an active attack occurring on the network. Which of the following would BEST reduce the risk of this attack reoccurring m the future?

A.Reducing DHCP lease length

B.Increasing DHCP pool size

C.Upgrading device firmware

D.Disabling dynamic trucking

E.Enabling port security

CAS-003 Exam Question 159

The technology steering committee is struggling with increased requirements stemming from an increase in telecommuting. The organization has not addressed telecommuting in the past. The implementation of a new SSL-VPN and a VOIP phone solution enables personnel to work from remote locations with corporate assets.
Which of the following steps must the committee take FIRST to outline senior management's directives?

A.Develop an information classification scheme that will properly secure data on corporate systems.

B.Implement database views and constrained interfaces so remote users will be unable to access PII from personal equipment.

C.Publish a policy that addresses the security requirements for working remotely with company equipment.

D.Work with mid-level managers to identify and document the proper procedures for telecommuting.

CAS-003 Exam Question 160

A user workstation was infected with a new malware variant as a result of a drive-by download. The security administrator reviews key controls on the infected workstation and discovers the following:

Which of the following would BEST prevent the problem from reoccurring in the future? (Choose two.)

A.Install HIPS

B.Enable DLP

C.Install EDR

D.Install HIDS

E.Enable application blacklisting

F.Improve patch management processes

Other Version: 2095CompTIA.CAS-003.v2022-04-30.q101; 61CompTIA.Itpassleader.CAS-003.v2021-08-06.by.gale.404q.pdf

Latest Upload: 136IIBA.ECBA.v2026-06-24.q96; 158Microsoft.AI-102.v2026-06-24.q184; 107Databricks.Databricks-Generative-AI-Engineer-Associate.v2026-06-24.q31; 117EMC.D-PDM-DY-23.v2026-06-24.q16; 204ECCouncil.312-50v13.v2026-06-24.q254; 129F5.F5CAB5.v2026-06-22.q29; 130Juniper.JN0-650.v2026-06-22.q31; 152Salesforce.Plat-Admn-201.v2026-06-22.q72; 164VMware.3V0-21.25.v2026-06-20.q29; 169Microsoft.AB-731.v2026-06-19.q23

CAS-003 Exam Question 156

CAS-003 Exam Question 157

CAS-003 Exam Question 158

CAS-003 Exam Question 159

CAS-003 Exam Question 160

Download PDF File