Online Access Free CAS-004 Exam Questions

A DevOps team has deployed databases, event-driven services, and an API gateway as PaaS solution that will support a new billing system. Which of the following security responsibilities will the DevOps team need to perform?

• A.Securely configure the authentication mechanisms
• B.Execute port scanning against the services
• C.Upgrade the service as part of life-cycle management
• D.Patch the infrastructure at the operating system

A security engineer has been informed by the firewall team that a specific Windows workstation is part of a command-and-control network. The only information the security engineer is receiving is that the traffic is occurring on a non-standard port (TCP 40322). Which of the following commands should the security engineer use FIRST to find the malicious process?

• A.ipconfig
• B.tasklist
• C.tcpdump
• D.netstar
• E.traceroute

A hospital has fallen behind with patching known vulnerabilities due to concerns that patches may cause disruptions in the availability of data and impact patient care. The hospital does not have a tracking solution in place to audit whether systems have been updated or to track the length of time between notification of the weakness and patch completion Since tracking is not in place the hospital lacks accountability with regard to who is responsible for these activities and the timeline of patching efforts. Which of the following should the hospital do first to mitigate this risk?

• A.Complete a vulnerability analysis
• B.Purchase a ticketing system for auditing efforts
• C.Obtain guidance from the health ISAC
• D.Ensure CVEs are current
• E.Train administrators on why patching is important

An organization mat provides a SaaS solution recently experienced an incident involving customer data loss.
The system has a level of sell-healing that includes monitoring performance and available resources. When me system detects an issue, the self-healing process is supposed to restart pans of me software.
During the incident, when me self-healing system attempted to restart the services, available disk space on the data drive to restart all the services was inadequate. The self-healing system did notdetect that some services did not fully restart and declared me system as fully operational. Which of the following BEST describes me reason why the silent failure occurred?

• A.Conditional checks prior to the service restart succeeded.
• B.The system logs rotated prematurely.
• C.The disk utilization alarms are higher than what me service restarts require.
• D.The number of nodes in me self-healing cluster was healthy,

A security analyst identified a vulnerable and deprecated runtime engine that is supporting a public-facing banking application. The developers anticipate the transition to modern development environments will take at least a month. Which of the following controls would best mitigate the risk without interrupting the service during the transition?

• A.Shutting down the systems until the code is ready
• B.Uninstalling the impacted runtime engine
• C.Configuring IPS and WAF with signatures
• D.Selectively blocking traffic on the affected port