CAS-004 Free Practice Test

Technicians have determined that the current server hardware is outdated, so they have decided to throw it out.
Prior to disposal, which of the following is the BEST method to use to ensure no data remnants can be recovered?

1. A. Drive wiping
2. B. Degaussing
3. C. Purging
4. D. Physical destruction

Correct Answer: B
Reference: https://securis.com/data-destruction/degaussing-as-a-service/

A company processes data subject to NDAs with partners that define the processing and storage constraints for the covered data. The agreements currently do not permit moving the covered data to the cloud, and the company would like to renegotiate the terms of the agreements.
Which of the following would MOST likely help the company gain consensus to move the data to the cloud?

1. A. Designing data protection schemes to mitigate the risk of loss due to multitenancy
2. B. Implementing redundant stores and services across diverse CSPs for high availability
3. C. Emulating OS and hardware architectures to blur operations from CSP view
4. D. Purchasing managed FIM services to alert on detected modifications to covered data

Correct Answer: A

A Chief information Security Officer (CISO) has launched to create a rebuts BCP/DR plan for the entire company. As part of the initiative , the security team must gather data supporting s operational importance for the applications used by the business and determine the order in which the application must be back online. Which of the following be the FIRST step taken by the team?

1. A. Perform a review of all policies an procedures related to BGP a and DR and created an educated educational module that can be assigned to at employees to provide training on BCP/DR events.
2. B. Create an SLA for each application that states when the application will come back online and distribute this information to the business units.
3. C. Have each business unit conduct a BIA and categories the application according to the cumulative data gathered.
4. D. Implement replication of all servers and application data to back up detacenters that are geographically from the central datacenter and release an upload BPA to all clients.

Correct Answer: C

A Chief Security Officer (CSO) is concerned about the number of successful ransomware attacks that have hit the company. The data Indicates most of the attacks came through a
fake email. The company has added training, and the CSO now wants to evaluate whether the training has been successful. Which of the following should the CSO implement?

1. A. Simulating a spam campaign
2. B. Conducting a sanctioned vishing attack
3. C. Performing a risk assessment
4. D. Executing a penetration test

Correct Answer: A
A spam campaign is a mass distribution of unsolicited or fraudulent emails that may contain malicious links, attachments, or requests. Spam campaigns are often used by attackers to deliver ransomware, which is a type of malware that encrypts the victim’s data and demands a ransom for its decryption.
Simulating a spam campaign would allow the Chief Security Officer (CSO) to evaluate whether the training has been successful in reducing the number of successful ransomware attacks that have hit the company, because it would:
✑ Test the employees’ ability to recognize and avoid clicking on fake or malicious
emails, which is one of the main vectors for ransomware infection.
✑ Measure the effectiveness of the training by comparing the click-through rate and the infection rate before and after the training.
✑ Provide feedback and reinforcement to the employees by informing them of their performance and reminding them of the best practices for email security.

An administrator at a software development company would like to protect the integrity Of the company's applications with digital signatures. The developers report that the signing process keeps failing on all applications. The same key pair used for signing, however, is working properly on the website, is valid, and is issued by a trusted CA. Which of the following is MOST likely the cause of the signature failing?

1. A. The NTP server is set incorrectly for the developers.
2. B. The CA has included the certificate in its CRL_
3. C. The certificate is set for the wrong key usage.
4. D. Each application is missing a SAN or wildcard entry on the certificate.

Correct Answer: C
Digital signatures require the use of a cryptographic key pair, which consists
of a private key used to sign the application and a public key used to verify the signature. If the certificate used for signing the application is set for the wrong key usage, then the signature will fail. This can happen if the certificate is set for encrypting data instead of signing data, or if the certificate is set for the wrong algorithm, such as using an RSA key for an ECDSA signature.