Free CompTIA CAS-004 Practice Exam with Questions & Answers | Set: 4

A tabletop exercise is a type of testing plan that is used to discuss disaster recovery scenarios with representatives from multiple departments within an incident response team but without taking any invasive actions. A tabletop exercise is a simulation of a potential disaster or incident that involves a verbal or written discussion of how each department would respond to it. The purpose of a tabletop exercise is to identify gaps, weaknesses, or conflicts in the disaster recovery plan, and to improve communication and coordination among the team members.

SaaS, or software as a service, is the solution that can best fulfill the requirements of having the lowest RTO possible, the least shared responsibility possible, and patching as a responsibility of the CSP. SaaS is a cloud service model that provides users with access to software applications hosted and managed by the CSP over the internet. SaaS has the lowest RTO (recovery time objective), which is the maximum acceptable time for restoring a system or service after a disruption, because it does not require any installation, configuration, or maintenance by the users. SaaS also has the least shared responsibility possible because most of the security aspects are handled by the CSP, such as patching, updating, backup, encryption, authentication, etc.

A source code escrow is a legal agreement that involves a third party holding the source code of a software application on behalf of the software vendor and the software licensee. The source code escrow ensures that the licensee can access the source code in case the vendor goes out of business, fails to provide maintenance or support, or breaches the contract terms.

A source code escrow would have prevented the risk of having an old application that is not covered for maintenance anymore because the software company is no longer in business, because it would:

Allow the licensee to obtain the source code and continue to update, fix, or modify the application according to their needs.

Protect the vendor’s intellectual property rights and prevent unauthorized disclosure or use of the source code.

Provide a legal framework and a trusted mediator for resolving any disputes or issues between the vendor and the licensee.

Resource exhaustion is a condition that occurs when a system or service runs out of resources, such as memory, CPU, disk space, or bandwidth, and becomes unable to function properly or respond torequests. Resource exhaustion can be caused by high demand, poor design, misconfiguration, or malicious attacks, such as denial-of-service (DoS).

Resource exhaustion would be the most significant business risk to a company that signs a contract with a cloud service provider (CSP) that is able to provide the same uptime as other CSPs at a markedly reduced cost, because this could:

Indicate that the CSP is oversubscribing or underprovisioning its resources, which could result in performance degradation, service disruption, or data loss for the company.

Affect the company’s availability, reliability, and scalability requirements, which could impact its operations, reputation, and customer satisfaction.

Expose the company to potential security breaches or compliance violations, if the CSP does not implement adequate security controls or measures to prevent or mitigate resource exhaustion.

Modifying the ACLs (access control lists) is the most likely solution to avoid the intermittent access issues with the new cloud application. ACLs are used to define permissions for different users and groups to access resources on a network. The problem may be caused by incorrect or missing ACLs for the marketing department that prevent them from accessing the cloud application or its data sources. The other options are either irrelevant or less effective for the given scenario.

A single-tenancy SaaS solution is the best solution for this company. SaaS stands for software as a service, which is a cloud-based model that allows customers to access applications hosted by a provider over the internet. A single-tenancy SaaS solution means that the company has its own dedicated instance of the application and its underlying infrastructure, which offers more control, customization, and security than a multi-tenancy SaaS solution where multiple customers share the same resources. A single-tenancy SaaS solution also eliminates the need for managing a private cloud or an on-premises infrastructure. Verified References: https://www.comptia.org/training/books/casp-cas-004-study-guide , https://www.ibm.com/cloud/learn/saas

10.1.45.65 SFTP Server Disable 8080

10.1.45.66 Email Server Disable 415 and 443

10.1.45.67 Web Server Disable 21, 80

10.1.45.68 UTM Appliance Disable 21

OCSP stapling and HSTS are the best options to meet the requirements of reducing the risk of on-path attacks and implementing stronger digital trust. OCSP stapling allows the social media servers to improve TLS performance by sending a signed certificate status along with the certificate, eliminating the need for the client to contact the CA separately. HSTS allows the social media servers to inform the client to only use HTTPS and prevent downgrade attacks. The other options are either irrelevant or less effective for the given scenario. 

Problem Statement:

The CIO needs a solution that:

Supportsenterprise mobility(employees accessing resources from various devices).

Allowsenforcement of configuration settings.

Enablesdata managementanddevice managementfor bothcompany-owned and personal devices.

Why the Correct Answer is D (MDM - Mobile Device Management):

MDM (Mobile Device Management)is a comprehensive solution that:

Manages both corporate and personal devicesby enrolling them into a centralized system.

Enforcesconfiguration policies, such aspassword policies, encryption settings, and app restrictions.

Providesremote management capabilitieslikewipe, lock, or locatein case of theft or loss.

Supportsdata separationon personal devices throughcontainerization.

MDM tools can integrate withBYOD, CYOD, and COPE policiesto providegranular controlregardless of device ownership.

Popular MDM solutions include:

Microsoft Intune

VMware Workspace ONE

MobileIron

Why the Other Options Are Incorrect:

A. BYOD (Bring Your Own Device):

BYOD policies allow employees touse personal devicesfor work.

However, BYOD alone does not providemanagement or enforcement capabilities.

MDM is requiredto manage BYOD effectively.

B. CYOD (Choose Your Own Device):

Employees select a device from apre-approved list, but theorganization retains ownership.

CYOD addressesdevice choicebut not thecomprehensive managementrequired.

MDMis still needed forenforcement and data control.

C. COPE (Corporate-Owned, Personally Enabled):

Devices arecompany-ownedbut allowpersonal use.

While it allowsmore controlthan BYOD, it still lacks thedevice management and data protectioncapabilities needed without MDM.

Why MDM is the Best Choice:

MDM integrates seamlessly withBYOD, CYOD, and COPEpolicies.

It provides theCIO with centralized management, allowing control over:

Application installations

Security configurations

Data access and protection

Device compliance

Additionally, MDM supportsmulti-platform environments(Android, iOS, Windows), making it versatile forenterprise mobility.

Real-World Example:

A company with aremote workforceallows employees to use bothcorporate and personal devicesfor accessing internal applications.

They implementMicrosoft Intune (an MDM solution)to:

Enforce encryption and passcodeson both device types.

Monitor app usageandbrowser activityfor compliance.

Remotely wipecompany data frompersonal devicesif an employee leaves.

Visual Representation:

pgsql

CopyEdit

+-------------------+ +-------------------+

| Company-Owned | | Personal Device |

| Device | | (BYOD) |

+-------------------+ +-------------------+

| |

| |

+-------------------+ +-------------------+

| MDM Server | <---------> | Policy Engine |

+-------------------+ +-------------------+

| |

Centralized Management Configuration Enforcement

The MDM server acts as acentral pointto enforce policies on bothcorporate and personal devices.

Extract from CompTIA SecurityX CAS-005 Study Guide:

TheCompTIA SecurityX CAS-005 Official Study GuidehighlightsMDMas a key component for managingenterprise mobility, especially in environments where bothcorporate and personal devicesare used. MDM enablespolicy enforcement,data management, anddevice control, fulfilling the requirements of modernmobile-first organizations.