1. Home
  2. CompTIA
  3. CAS-004
  4. CompTIA.CAS-004.v2022-05-18.q62 Practice Test (Page 11)

CAS-004 Exam Question 46

A cybersecurity engineer analyst a system for vulnerabilities. The tool created an OVAL. Results document as output. Which of the following would enable the engineer to interpret the results in a human readable form? (Select TWO.)

    • CAS-004 Exam Question 47

    An organization's assessment of a third-party, non-critical vendor reveals that the vendor does not have cybersecurity insurance and IT staff turnover is high. The organization uses the vendor to move customer office equipment from one service location to another. The vendor acquires customer data and access to the business via an API.
    Given this information, which of the following is a noted risk?

    • CAS-004 Exam Question 48

    A security architect is reviewing the following proposed corporate firewall architecture and configuration:

    Both firewalls are stateful and provide Layer 7 filtering and routing. The company has the following requirements:
    Web servers must receive all updates via HTTP/S from the corporate network.
    Web servers should not initiate communication with the Internet.
    Web servers should only connect to preapproved corporate database servers.
    Employees' computing devices should only connect to web services over ports 80 and 443.
    Which of the following should the architect recommend to ensure all requirements are met in the MOST secure manner? (Choose two.)

    • CAS-004 Exam Question 49

    A health company has reached the physical and computing capabilities in its datacenter, but the computing demand continues to increase. The infrastructure is fully virtualized and runs custom and commercial healthcare application that process sensitive health and payment information. Which of the following should the company implement to ensure it can meet the computing demand while complying with healthcare standard for virtualization and cloud computing?

    • CAS-004 Exam Question 50

    A review of the past year's attack patterns shows that attackers stopped reconnaissance after finding a susceptible system to compromise. The company would like to find a way to use this information to protect the environment while still gaining valuable attack information.
    Which of the following would be BEST for the company to implement?
    • Other Version
    2840CompTIA.CAS-004.v2025-04-16.q409
    1920CompTIA.CAS-004.v2024-05-02.q315
    1264CompTIA.CAS-004.v2024-02-08.q162
    1615CompTIA.CAS-004.v2023-10-26.q155
    2434CompTIA.CAS-004.v2023-09-11.q196
    1482CompTIA.CAS-004.v2023-07-04.q118
    1618CompTIA.CAS-004.v2023-04-04.q100
    1426CompTIA.CAS-004.v2023-03-18.q82
    1367CompTIA.CAS-004.v2023-03-08.q83
    1678CompTIA.CAS-004.v2023-02-06.q91
    1179CompTIA.CAS-004.v2023-01-23.q73
    1405CompTIA.CAS-004.v2023-01-21.q71
    1363CompTIA.CAS-004.v2023-01-09.q75
    1750CompTIA.CAS-004.v2022-05-27.q44
    74CompTIA.Actual4dumps.CAS-004.v2022-04-25.by.norma.44q.pdf
    Latest Upload
    180CBIC.CIC.v2026-06-15.q123
    125Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16
    170HashiCorp.Terraform-Associate-004.v2026-06-15.q126
    130Peoplecert.ITILFNDv5.v2026-06-15.q26
    127Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28
    127Fortinet.NSE5_SSE_AD-7.6.v2026-06-15.q17
    291PMI.PMI-ACP.v2026-06-15.q523
    167LinuxFoundation.CKAD.v2026-06-15.q118
    158CrowdStrike.CCSE-204.v2026-06-12.q25
    195VMware.2V0-17.25.v2026-06-12.q49