CompTIA CS0-002 Exam Dumps

Clients are unable to access a company’s API to obtain pricing data. An analyst discoverssources other thanclients are scraping the API for data, which is causing the servers to exceed availableresources. Which of thefollowing would be BEST to protect the availability of the APIs?

Which of the following is MOST closely related to the concept of privacy?

Which of the following sources would a security analyst rely on to provide relevant andtimely threat information concerning the financial services industry?

A large insurance company wants to outsource its claim-handling operations to anoverseas third-party organization Which of the following would BEST help to reduce thechance of highly sensitive data leaking?

A forensic analyst took an image of a workstation that was involved in an incident To BESTensure the image is not tampered with me analyst should use:

Employees of a large financial company are continuously being Infected by strands ofmalware that are not detected by EDR tools. When of the following Is the BEST securitycontrol to implement to reduce corporate risk while allowing employees to exchange files atclient sites?

A user reports a malware alert to the help desk A technician verifies the alert, determinesthe workstation is classified as a low-severity device, and uses network controls to blockaccess The technician then assigns the ticket to a security analyst who will complete theeradication and recovery processes. Which of the following should the security analyst doNEXT?

An organization is upgrading its network and all of its workstations The project will occur inphases, with infrastructure upgrades each month and workstation installs every other week.The schedule should accommodate the enterprise-wide changes, while minimizing theimpact to the network. Which of the following schedules BEST addresses theserequirements?

An organization is upgrading its network and all of its workstations The project will occur inphases, with infrastructure upgrades each month and workstation installs every other week.The schedule should accommodate the enterprise-wide changes, while minimizing theimpact to the network. Which of the following schedules BEST addresses theserequirements?

A company's legal department is concerned that its incident response plan does not coverthe countless ways security incidents can occur They have asked a security analyst to helptailor the response plan to provide broad coverage for many situations. Which of thefollowing is the BEST way to achieve this goal?

Which of the following BEST describes the primary role ol a risk assessment as it relates tocompliance with risk-based frameworks?

A security analyst is generating a list of recommendations for the company's insecure API.Which of the following is the BEST parameter mitigation rec

Because some clients have reported unauthorized activity on their accounts, a securityanalyst is reviewing network packet captures from the company's API server. A portion of acapture file is shown below:POST /services/v1_0/Public/Members.svc/soaphttp://schemas.s/soap/envelope/">http://tempuri.org/">http://schemas.somesite.org"+xmlns:i="http://www.w3.org/2001/XMLSchema-instance"></s:Body></s:Envelope> 192.168.1.22 - - api.somesite.com 200 0 10061001 0 192.168.1.22POST /services/v1_0/Public/Members.svc/soap<<a:Password>Password123</a:Password><a:ResetPasswordToken+i:nil="true"/> <a:ShouldImpersonatedAuthenticationBePopulated+i:nil="true"/><a:Username>[email protected]</a:Username></request></Login></s:Body></s:Envelope>192.168.5.66 - - api.somesite.com 200 0 11558 1712 2024 192.168.4.89POST /services/v1_0/Public/Members.svc/soaphttp://schemas.xmlsoap.org/soap/envelope/">tion+xmlns="http://tempuri.org/"> <a:IPAddress>516.7.446.605</a:IPAddress><a:ZipCode+i:nil="true"/></request></GetIPLocation></s:Body></s:Envelope> 192.168.1.22 - - api.somesite.com 200 0 1003 1011 307192.168.1.22POST /services/v1_0/Public/Members.svc/soaphttp://schemas.xmlsoap.org/soap/envelope/">n+xmlns="http://tempuri.org/"> http://schemas.datacontract.org/2004/07/somesite.web+xmlns:i="http://www.w3.org/2001/XMLSchema-instance"> <a:ApiToken>kmL4krg2CwwWBan5BReGv5Djb7syxXTNKcWFuSjd</a:ApiToken><a:ImpersonateUserId>0</a:ImpersonateUserId><a:LocationId>161222</a:LocationId> <a:NetworkId>4</a:NetworkId><a:ProviderId>''1=1</a:ProviderId><a:UserId>13026046</a:UserId></a:Authentication></request></IsLoggedIn></s:Body></s:Envelope> 192.168.5.66- - api.somesite.com 200 0 1378 1209 48 192.168.4.89Which of the following MOST likely explains how the clients' accounts were compromised?

An organization has several systems that require specific logons Over the past few months,the security analyst has noticed numerous failed logon attempts followed by passwordresets. Which of the following should the analyst do to reduce the occurrence of legitimatefailed logons and password resets?

Following a recent security breach, a company decides to investigate account usage toensure privileged accounts are only being utilized during typical business hours. During theinvestigation, a security analyst determines an account was consistently utilized in themiddle of the night.Which of the following actions should the analyst take NEXT?

A company's blocklist has outgrown the current technologies in place. The ACLS are atmaximum, and the IPS signatures only allow a certainamount of space for domains to be added, creating the need for multiple signatures.Which of the following configuration changes to the existing controls would be the MOSTappropriate to improve performance?

An analyst needs to provide a recommendation that will allow a custom-developedapplication to have full access to the system's processors and peripherals but still becontained securely from other applications that will be developed. Which of the following isthe BEST technology for the analyst to recommend?

A remote code execution vulnerability was discovered in the RDP. An organizationcurrently uses RDP for remote access to a portion of its VDI environment. The analystverified network-levelauthentication is enabledWhich of the following is the BEST remediation for this vulnerability?

A security analyst for a large pharmaceutical company was given credentials from a threatintelligence resources organisation for Internal users, which contain usernames and validpasswords for company accounts. Which of the following is the FIRST action the analystshould take as part of security operations monitoring?

An employee was found to have performed fraudulent activities. The employee wasdismissed, and the employee's laptop was sent to the IT service desk to undergo a datasanitization procedure. However, the security analyst responsible for the investigationwants to avoid data sanitization. Which of the following can the security analyst use tojustify the request?

An organization's Chief Information Security Officer (CISO) has asked department leadersto coordinate on communication plans that can be enacted in response to differentcybersecurity incident triggersWhich of the following is a benefit of having these communication plans?

A security analyst needs to perform a search for connections with a suspicious IP on thenetwork traffic. The company collects full packet captures at the Internet gateway andretains them for one week. Which of the following will enable the analyst to obtain theBEST results?

A security engineer is reviewing security products that identify malicious actions by usersas part of a company's insider threat program. Which of the following is the MOSTappropriate product category for this purpose?

In system hardening, which of the following types of vulnerability scans would work BESTto verify the scanned device meets security policies?

In system hardening, which of the following types of vulnerability scans would work BESTto verify the scanned device meets security policies?