Valid CAS-005 Dumps shared by ExamDiscuss.com for Helping Passing CAS-005 Exam! ExamDiscuss.com now offer the newest CAS-005 exam dumps, the ExamDiscuss.com CAS-005 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com CAS-005 dumps with Test Engine here:
Access CAS-005 Dumps Premium Version
(250 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 15/56
A security engineer is given the following requirements:
* An endpoint must only execute Internally signed applications
* Administrator accounts cannot install unauthorized software.
* Attempts to run unauthorized software must be logged
Which of the following best meets these requirements?
* An endpoint must only execute Internally signed applications
* Administrator accounts cannot install unauthorized software.
* Attempts to run unauthorized software must be logged
Which of the following best meets these requirements?
Correct Answer: D
To meet the requirements of only allowing internally signed applications, preventing unauthorized software installations, and logging attempts to run unauthorized software, configuring application control with blocked hashes and enterprise-trusted root certificates is the best solution. This approach ensures that only applications signed by trusted certificates are allowed to execute, while all other attempts are blocked and logged. It effectively prevents unauthorized software installations by restricting execution to pre-approved applications.
References:
* CompTIA SecurityX Study Guide: Describes application control mechanisms and the use of trusted certificates to enforce security policies.
* NIST Special Publication 800-53, "Security and Privacy Controls for Information Systems and Organizations": Recommends application whitelisting and execution control for securing endpoints.
* "The Application Security Handbook" by Mark Dowd, John McDonald, and Justin Schuh: Covers best practices for implementing application control and managing trusted certificates
References:
* CompTIA SecurityX Study Guide: Describes application control mechanisms and the use of trusted certificates to enforce security policies.
* NIST Special Publication 800-53, "Security and Privacy Controls for Information Systems and Organizations": Recommends application whitelisting and execution control for securing endpoints.
* "The Application Security Handbook" by Mark Dowd, John McDonald, and Justin Schuh: Covers best practices for implementing application control and managing trusted certificates
- Question List (56q)
- Question 1: A systems administrator wants to reduce the number of failed...
- Question 2: Within a SCADA a business needs access to the historian serv...
- Question 3: An organization is required to * Respond to internal and ext...
- Question 4: A company lined an email service provider called my-email.co...
- Question 5: A cloud engineer needs to identify appropriate solutions to:...
- Question 6: A company's help desk is experiencing a large number of call...
- Question 7: An organization wants to manage specialized endpoints and ne...
- Question 8: A company that relies on an COL system must keep it operatin...
- Question 9: A company updates its cloud-based services by saving infrast...
- Question 10: A security engineer wants to reduce the attack surface of a ...
- Question 11: A financial technology firm works collaboratively with busin...
- Question 12: A security analyst Detected unusual network traffic related ...
- Question 13: During a security assessment using an CDR solution, a securi...
- Question 14: Users are experiencing a variety of issues when trying to ac...
- Question 15: A security engineer is given the following requirements: * A...
- Question 16: A company receives several complaints from customers regardi...
- Question 17: A news organization wants to implement workflows that allow ...
- Question 18: A global manufacturing company has an internal application m...
- Question 19: A company wants to invest in research capabilities with the ...
- Question 20: The material finding from a recent compliance audit indicate...
- Question 21: During a gap assessment, an organization notes that OYOD usa...
- Question 22: A security engineer is developing a solution to meet the fol...
- Question 23: (Exhibit) Which of the following is the security engineer mo...
- Question 24: (Exhibit) An organization is planning for disaster recovery ...
- Question 25: The identity and access management team is sending logs to t...
- Question 26: A security architect for a global organization with a distri...
- Question 27: After some employees were caught uploading data to online pe...
- Question 28: Company A and Company D ate merging Company A's compliance r...
- Question 29: Which of the following AI concerns is most adequately addres...
- Question 30: A security analyst discovered requests associated with IP ad...
- Question 31: Company A acquired Company B and needs to determine how the ...
- Question 32: A software development team requires valid data for internal...
- Question 33: A company is having issues with its vulnerability management...
- Question 34: A systems administrator wants to use existing resources to a...
- Question 35: A senior security engineer flags me following log file snipp...
- Question 36: Recent repents indicate that a software tool is being exploi...
- Question 37: A company's security policy states that any publicly availab...
- Question 38: A company isolated its OT systems from other areas of the co...
- Question 39: A vulnerability can on a web server identified the following...
- Question 40: A company that uses containers to run its applications is re...
- Question 41: A security analyst wants to use lessons learned from a poor ...
- Question 42: Which of the following best explains the importance of deter...
- Question 43: A security engineer needs 10 secure the OT environment based...
- Question 44: A systems administrator wants to introduce a newly released ...
- Question 45: An incident response team is analyzing malware and observes ...
- Question 46: A cybersecurity architect is reviewing the detection and mon...
- Question 47: A user reports application access issues to the help desk. T...
- Question 48: A developer needs to improve the cryptographic strength of a...
- Question 49: An organization mat performs real-time financial processing ...
- Question 50: All organization is concerned about insider threats from emp...
- Question 51: Which of the following best explains the business requiremen...
- Question 52: During the course of normal SOC operations, three anomalous ...
- Question 53: A product development team has submitted code snippets for r...
- Question 54: Asecuntv administrator is performing a gap assessment agains...
- Question 55: A security administrator needs to automate alerting. The ser...
- Question 56: An organization is implementing Zero Trust architecture A sy...
