Online Access Free CAS-005 Exam Questions

A hospital provides tablets to its medical staff to enable them to more quickly access and edit patients' charts. The hospital wants to ensure that if a tablet is identified as lost or stolen and a remote command is issued, the risk of data loss can be mitigated within seconds. The tablets are configured as follows:
* Full disk encryption is enabled.
* "Always On" corporate VPN is enabled.
* eFuse-backed keystore is enabled.
* Wi-Fi 6 is configured with SAE.
* Location services is disabled.
* Application allow list is unconfigured.
Assuming the hospital policy cannot be changed, which of the following is the best way to meet the hospital's objective?

• A.Revoke the user VPN and Wi-Fi certificates
• B.Issue new MFA credentials to all users
• C.Configure the application allow list
• D.Cryptographically erase FDE volumes

An organization decides to move to a distributed workforce model. Several legacy systems exist on premises and cannot be migrated because of existing compliance requirements. However, all new systems are required to be cloud-based. Which of the following would best ensure network access security?

• A.Utilizing a VPN for all users who require legacy system access
• B.Deploying microsegmentation with a firewall acting as the core router
• C.Shifting all legacy systems to the existing public cloud infrastructure
• D.Configuring an SDN to block malicious traffic to on-premises networks

A central bank implements strict risk mitigations for the hardware supply chain, including an allow list for specific countries of origin. Which of the following best describes the cyberthreat to the bank?

• A.Fragility and other availability attacks
• B.Physical Implants and tampering
• C.Ability to obtain components during wartime
• D.Non-conformance to accepted manufacturing standards

An endpoint security engineer finds that a newly acquired company has a variety of non-standard applications running and no defined ownership for those applications. The engineer needs to find a solution thatrestricts malicious programs and software from running in that environment, while allowing the non-standard applications to function without interruption. Which of the following application control configurations should the engineer apply?

• A.Audit mode
• B.MAC list
• C.Allow list
• D.Deny list

A company plans to implement a research facility with Intellectual property data that should be protected The following is the security diagram proposed by the security architect

Which of the following security architect models is illustrated by the diagram?

• A.Perimeter protection security model
• B.Agent based security model
• C.Zero Trust security model
• D.Identity and access management model