20:00

PDF|

Guide for CompTIA Advanced Security Practitioner

Quiz CompTIA Advanced Security Practitioner

Free Test
/ 10

Quiz

1/10
An organization is referencing NIST best practices for BCP creation while reviewing current internal
organizational processes for mission-essential items.
Which of the following phases establishes the identification and prioritization of critical systems and
functions?
Select the answer
1 correct answer
A.
Review a recent gap analysis.
B.
Perform a cost-benefit analysis.
C.
Conduct a business impact analysis.
D.
Develop an exposure factor matrix.

Quiz

2/10
An organization is preparing to migrate its production environment systems from an on-premises
environment to a cloud service. The lead security architect is concerned that the organization's
current methods for addressing risk may not be possible in the cloud environment.
Which of the following BEST describes the reason why traditional methods of addressing risk may not
be possible in the cloud?
Select the answer
1 correct answer
A.
Migrating operations assumes the acceptance of all risk.
B.
Cloud providers are unable to avoid risk.
C.
Specific risks cannot be transferred to the cloud provider.
D.
Risks to data in the cloud cannot be mitigated.

Quiz

3/10
A company created an external application for its customers. A security researcher now reports that
the application has a serious LDAP injection vulnerability that could be leveraged to bypass
authentication and authorization.
Which of the following actions would BEST resolve the issue? (Choose two.)
Select the answer
2 correct answers
A.
Conduct input sanitization.
B.
Deploy a SIEM.
C.
Use containers.
D.
Patch the OS
E.
Deploy a WAF.
F.
Deploy a reverse proxy
G.
Deploy an IDS.

Quiz

4/10
In preparation for the holiday season, a company redesigned the system that manages retail sales
and moved it to a cloud service provider. The new infrastructure did not meet the company’s
availability requirements. During a postmortem analysis, the following issues were highlighted:
1. International users reported latency when images on the web page were initially loading.
2. During times of report processing, users reported issues with inventory when attempting to place
orders.
3. Despite the fact that ten new API servers were added, the load across servers was heavy at peak
times.
Which of the following infrastructure design changes would be BEST for the organization to
implement to avoid these issues in the future?
Select the answer
1 correct answer
A.
Serve static content via distributed CDNs, create a read replica of the central database and pull
reports from there, and auto-scale API servers based on performance.
B.
Increase the bandwidth for the server that delivers images, use a CDN, change the database to a
non-relational database, and split the ten API servers across two load balancers.
C.
Serve images from an object storage bucket with infrequent read times, replicate the database
across different regions, and dynamically create API servers based on load.
D.
Serve static-content object storage across different regions, increase the instance size on the
managed relational database, and distribute the ten API servers across multiple regions.

Quiz

5/10
During a remodel, a company’s computer equipment was moved to a secure storage room with
cameras positioned on both sides of the door. The door is locked using a card reader issued by the
security team, and only the security team and department managers have access to the room. The
company wants to be able to identify any unauthorized individuals who enter the storage room by
following an authorized employee.
Which of the following processes would BEST satisfy this requirement?
Select the answer
1 correct answer
A.
Monitor camera footage corresponding to a valid access request.
B.
Require both security and management to open the door.
C.
Require department managers to review denied-access requests.
D.
Issue new entry badges on a weekly basis.

Quiz

6/10
A company is preparing to deploy a global service.
Which of the following must the company do to ensure GDPR compliance? (Choose two.)
Select the answer
2 correct answers
A.
Inform users regarding what data is stored.
B.
Provide opt-in/out for marketing messages.
C.
Provide data deletion capabilities.
D.
Provide optional data encryption.
E.
Grant data access to third parties.
F.
Provide alternative authentication techniques.

Quiz

7/10
A SOC analyst is reviewing malicious activity on an external, exposed web server. During the
investigation, the analyst determines specific traffic is not being logged, and there is no visibility from
the WAF for the web application.
Which of the following is the MOST likely cause?
Select the answer
1 correct answer
A.
The user agent client is not compatible with the WAF.
B.
A certificate on the WAF is expired.
C.
HTTP traffic is not forwarding to HTTPS to decrypt.
D.
Old, vulnerable cipher suites are still being used.

Quiz

8/10
A security analyst is reviewing the following output:


Certification Exam CompTIA Advanced Security Practitioner CompTIA CompTIA-CAS-004 2-528523360


Which of the following would BEST mitigate this type of attack?
Select the answer
1 correct answer
A.
Installing a network firewall
B.
Placing a WAF inline
C.
Implementing an IDS
D.
Deploying a honeypot

Quiz

9/10
Which of the following terms refers to the delivery of encryption keys to a CASB or a third-party
entity?
Select the answer
1 correct answer
A.
Key sharing
B.
Key distribution
C.
Key recovery
D.
Key escrow

Quiz

10/10
An organization is implementing a new identity and access management architecture with the
following objectives:
Supporting MFA against on-premises infrastructure
Improving the user experience by integrating with SaaS applications
Applying risk-based policies based on location
Performing just-in-time provisioning
Which of the following authentication protocols should the organization implement to support these
requirements?
Select the answer
1 correct answer
A.
Kerberos and TACACS
B.
SAML and RADIUS
C.
OAuth and OpenID
D.
OTP and 802.1X
Looking for more questions?Buy now

CompTIA Advanced Security Practitioner Practice test unlocks all online simulator questions

Thank you for choosing the free version of the CompTIA Advanced Security Practitioner practice test! Further deepen your knowledge on CompTIA Simulator; by unlocking the full version of our CompTIA Advanced Security Practitioner Simulator you will be able to take tests with over 244 constantly updated questions and easily pass your exam. 98% of people pass the exam in the first attempt after preparing with our 244 questions.

BUY NOW

What to expect from our CompTIA Advanced Security Practitioner practice tests and how to prepare for any exam?

The CompTIA Advanced Security Practitioner Simulator Practice Tests are part of the CompTIA Database and are the best way to prepare for any CompTIA Advanced Security Practitioner exam. The CompTIA Advanced Security Practitioner practice tests consist of 244 questions and are written by experts to help you and prepare you to pass the exam on the first attempt. The CompTIA Advanced Security Practitioner database includes questions from previous and other exams, which means you will be able to practice simulating past and future questions. Preparation with CompTIA Advanced Security Practitioner Simulator will also give you an idea of the time it will take to complete each section of the CompTIA Advanced Security Practitioner practice test . It is important to note that the CompTIA Advanced Security Practitioner Simulator does not replace the classic CompTIA Advanced Security Practitioner study guides; however, the Simulator provides valuable insights into what to expect and how much work needs to be done to prepare for the CompTIA Advanced Security Practitioner exam.

BUY NOW

CompTIA Advanced Security Practitioner Practice test therefore represents an excellent tool to prepare for the actual exam together with our CompTIA practice test . Our CompTIA Advanced Security Practitioner Simulator will help you assess your level of preparation and understand your strengths and weaknesses. Below you can read all the quizzes you will find in our CompTIA Advanced Security Practitioner Simulator and how our unique CompTIA Advanced Security Practitioner Database made up of real questions:

Info quiz:

  • Quiz name:CompTIA Advanced Security Practitioner
  • Total number of questions:244
  • Number of questions for the test:50
  • Pass score:80%

You can prepare for the CompTIA Advanced Security Practitioner exams with our mobile app. It is very easy to use and even works offline in case of network failure, with all the functions you need to study and practice with our CompTIA Advanced Security Practitioner Simulator.

Use our Mobile App, available for both Android and iOS devices, with our CompTIA Advanced Security Practitioner Simulator . You can use it anywhere and always remember that our mobile app is free and available on all stores.

Our Mobile App contains all CompTIA Advanced Security Practitioner practice tests which consist of 244 questions and also provide study material to pass the final CompTIA Advanced Security Practitioner exam with guaranteed success. Our CompTIA Advanced Security Practitioner database contain hundreds of questions and CompTIA Tests related to CompTIA Advanced Security Practitioner Exam. This way you can practice anywhere you want, even offline without the internet.

BUY NOW