CASP+PracticeTestExamQuestionsand
Answers.
SCENARIO
DRAG DROP -Drag and drop the cloud deployment model to the associated use-case
scenario. Options may be used only once or not at all.
[SEE IMAGE] - Correct Answer Large multinational organization - Private cloud with IaaS
Collection of organ...
CASP+ Practice Test Exam Questions and
Answers.
SCENARIO
DRAG DROP -Drag and drop the cloud deployment model to the associated use-case
scenario. Options may be used only once or not at all.
[SEE IMAGE] - Correct Answer Large multinational organization - Private cloud with IaaS
Collection of organizations in the same industry - Community cloud with PaaS
Organization that has an orchestration - Hybrid Cloud
Marketing organization that outsources - Public cloud with SaaS
Organization that has migrated - Public cloud with PaaS
SCENARIO
DRAG DROP - A security consultant is considering authentication options for a financial
institution. The following authentication options are available. Drag and drop the security
mechanism to the appropriate use case. Options may be used once.
[SEE IMAGE]
Where users are attached to the corporate net, SSO will be used:
Auth to cloud-based corporate portals will feature SSO:
Any infrastructure portal will require time-based auth:
Customers will have delegated access to multiple digital services:
Choices:
Kerberos
OAUTH
OTP
SAML - Correct Answer Where users are attached to the corporate net, SSO will be used -
Kerberos
Auth to cloud-based corporate portals will feature SSO- SAML
Any infrastructure portal will require time-based auth - OTP
,Customers will have delegated access to multiple digital services - OAUTH
An infrastructure team is at the end of a procurement process and has selected a vendor.
As part of the final negotiations, there are a number of outstanding issues, including:
1. Indemnity clauses have identified the maximum liability
2. The data will be hosted and managed outside of the company's geographical location
The number of users accessing the system will be small, and no sensitive data will be
hosted in the solution. As the security consultant on the project, which of the following
should the project's security consultant recommend as the NEXT step?
Develop a security exemption, as it does not meet the security policies
Mitigate the risk by asking the vendor to accept the in-country privacy principles
Require the solution owner to accept the identified risks and consequences
Review the entire procurement process to determine the lessons learned - Correct
Answer Require the solution owner to accept the identified risks and consequences
SCENARIO
DRAG DROP -A security administrator must configure the database server shown below
to comply with the four requirements listed. Drag and drop the appropriate ACL that
should be configured on the database server to its corresponding requirement. Answer
options may be used once or not at all.
[SEE IMAGE] - Correct Answer The DB server can only be managed from NIC3 via RDP
from the sysadmin 10.100.2.0/24 network - Permit TCP from 10.100.2.0/24 to
172.16.0.20/32 port 3389
The web server in the 10.10.10.0/25 net - Permit TCP from 10.10.10.0/25 to
192.168.1.20/24 port 1433
The backup server at 172.30.10.3 - Permit IP from 172.30.103.3 to 192.168.1.20
The DB server should not initiate outbound connection on NIC2 - Deny IP from 10.0.10.20
to ANY
A security administrator is hardening a TrustedSolaris server that processes sensitive
data. The data owner has established the following security requirements:
✑ The data is for internal consumption only and shall not be distributed to outside
individuals
✑ The systems administrator should not have access to the data processed by the server
✑ The integrity of the kernel image is maintained
, Which of the following host-based security controls BEST enforce the data owner's
requirements? (Choose three.)
SELinux
DLP
HIDS
Host-based firewall
Measured boot
Data encryption
Watermarking - Correct Answer SELinux
DLP
Data encryption
An SQL database is no longer accessible online due to a recent security breach. An
investigation reveals that unauthorized access to the database was possible due to an
SQL injection vulnerability. To prevent this type of breach in the future, which of the
following security controls should be put in place before bringing the database back
online? (Choose two.)
A company has entered into a business agreement with a business partner for managed
human resources services. The Chief Information Security Officer (CISO) has been asked
to provide documentation that is required to set up a business-to-business VPN between
the two organizations. Which of the following is required in this scenario?
ISA
BIA
SLA
RA A - Correct Answer ISA
A document that regulates security-relevant aspects of an intended connection between
an agency and an external system. It regulates the security interface between any two
systems operating under two different distinct authorities
Given the following output from a local PC:
[SEE IMAGE]
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller alfreddicki. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $18.49. You're not tied to anything after your purchase.
