CAS-003 Free Practice Test

A pharmacy gives its clients online access to their records and the ability to review bills and make payments. A new SSL vulnerability on a special platform was discovered, allowing an attacker to capture the data between the end user and the web server providing these services. After invest the new vulnerability, it was determined that the web services providing are being impacted by this new threat. Which of the following data types a MOST likely at risk of exposure based on this new threat? (Select TWO)

1. A. Cardholder data
2. B. intellectual property
3. C. Personal health information
4. D. Employee records
5. E. Corporate financial data

Correct Answer: AC

An organization has recently deployed an EDR solution across its laptops, desktops, and server infrastructure. The organization’s server infrastructure is deployed in an IaaS environment. A database within the non-production environment has been misconfigured with a routable IP and is communicating with a command and control server.
Which of the following procedures should the security responder apply to the situation? (Choose two.)

1. A. Contain the server.
2. B. Initiate a legal hold.
3. C. Perform a risk assessment.
4. D. Determine the data handling standard.
5. E. Disclose the breach to customers.
6. F. Perform an IOC sweep to determine the impac

Correct Answer: BF

A security engineer is attempting to convey the importance of including job rotation in a company’s standard security policies. Which of the following would be the BEST justification?

1. A. Making employees rotate through jobs ensures succession plans can be implemented and prevents single point of failure.
2. B. Forcing different people to perform the same job minimizes the amount of time malicious actions go undetected by forcing malicious actors to attempt collusion between two or more people.
3. C. Administrators and engineers who perform multiple job functions throughout the day benefit from being cross-trained in new job areas.
4. D. It eliminates the need to share administrative account passwords because employees gain administrative rights as they rotate into a new job area.

Correct Answer: B

A software development manager is running a project using agile development methods. The company cybersecurity engineer has noticed a high number of vulnerabilities have been making it into production code on the project.
Which of the following methods could be used in addition to an integrated development environment to reduce the severity of the issue?

1. A. Conduct a penetration test on each function as it is developed
2. B. Develop a set of basic checks for common coding errors
3. C. Adopt a waterfall method of software development
4. D. Implement unit tests that incorporate static code analyzers

Correct Answer: D

To prepare for an upcoming audit, the Chief Information Security Officer (CISO) asks for all 1200 vulnerabilities on production servers to be remediated. The security engineer must determine which vulnerabilities represent real threats that can be explogted so resources can be prioritized to migrate the most dangerous risks. The CISO wants the security engineer to act in the same manner as would an external threat, while using vulnerability scan results to prioritize any actions. Which of the following approaches is described?

1. A. Blue team
2. B. Red team
3. C. Black box
4. D. White team

Correct Answer: C