CAS-003 Free Practice Test

An organization’s network engineering team recently deployed a new software encryption solution
to ensure the confidentiality of data at rest, which was found to add 300ms of latency to data readwrite requests in storage, impacting business operations.
Which of the following alternative approaches would BEST address performance requirements while meeting the intended security objective?

1. A. Employ hardware FDE or SED solutions.
2. B. Utilize a more efficient cryptographic hash function.
3. C. Replace HDDs with SSD arrays.
4. D. Use a FIFO pipe a multithreaded software solutio

Correct Answer: A

A large organization has recently suffered a massive credit card breach. During the months of Incident Response, there were multiple attempts to assign blame for whose fault it was that the incident occurred. In which part of the incident response phase would this be addressed in a controlled and productive manner?

1. A. During the Identification Phase
2. B. During the Lessons Learned phase
3. C. During the Containment Phase
4. D. During the Preparation Phase

Correct Answer: B
The Lessons Learned phase is the final step in the Incident Response process, when everyone involved reviews what happened and why.
Incorrect Answers:
A: The Identification Phase is the second step in the Incident Response process that deals with the detection of events and incidents.
C: The Containment Phase is the third step in the Incident Response process that deals with the planning, training, and execution of the incident response plan.
D: The Preparation Phase is the first step in the Incident Response process that deals with policies and procedures required to attend to the potential of security incidents.
References:
Gregg, Michael, and Billy Haines, CASP CompTIA Advanced Security Practitioner Study Guide, John Wiley & Sons, Indianapolis, 2012, p. 249

A security engineer is embedded with a development team to ensure security is built into products being developed. The security engineer wants to ensure developers are not blocked by a large number of security requirements applied at specific schedule points. Which of the following solutions BEST meets the engineer’s goal?

1. A. Schedule weekly reviews of al unit test results with the entire development team and follow up between meetings with surprise code inspections.
2. B. Develop and implement a set of automated security tests to be installed on each development team leader’s workstation.
3. C. Enforce code quality and reuse standards into the requirements definition phase of the waterfall development process.
4. D. Deploy an integrated software tool that builds and tests each portion of code committed by developers and provides feedback.

Correct Answer: C

A company sales manager received a memo from the company’s financial department which stated that the company would not be putting its software products through the same security testing as previous years to reduce the research and development cost by 20 percent for the upcoming year. The memo also stated that the marketing material and service level agreement for each product would remain unchanged. The sales manager has reviewed the sales goals for the upcoming year and identified an increased target across the software products that will be affected by the financial department’s change. All software products will continue to go through new development in the coming year. Which of the following should the sales manager do to ensure the company stays out of trouble?

1. A. Discuss the issue with the software product's user groups
2. B. Consult the company’s legal department on practices and law
3. C. Contact senior finance management and provide background information
4. D. Seek industry outreach for software practices and law

Correct Answer: B
To ensure that the company stays out of trouble, the sales manager should enquire about the legal ramifications of the change by consulting with the company’s legal department, particularly as the marketing material is not being amended.
Incorrect Answers:
A: The software product's user groups would not have insight on the legal ramifications of the change by the company, and they might not have knowledge of the service-level agreements or any contracts that the company has with other customers.
C: The sales manager does not have additional background information to provide.
D: Legal information pertaining to internal operations should be obtained from the company’s legal department.

A Chief Information Officer (CIO) publicly announces the implementation of a new financial system. As part of a security assessment that includes a social engineering task, which of the following tasks should be conducted to demonstrate the BEST means to gain information to use for a report on social vulnerability details about the financial system?

1. A. Call the CIO and ask for an interview, posing as a job seeker interested in an open position
2. B. Compromise the email server to obtain a list of attendees who responded to the invitation who is on the IT staff
3. C. Notify the CIO that, through observation at events, malicious actors can identify individuals to befriend
4. D. Understand the CIO is a social drinker, and find the means to befriend the CIO at establishments the CIO frequents

Correct Answer: D