Summer Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: get65

CompTIA Updated CAS-005 Exam Questions and Answers by sapphire

Page: 14 / 25

CompTIA CAS-005 Exam Overview :

Exam Name: CompTIA SecurityX Certification Exam
Exam Code: CAS-005 Dumps
Vendor: CompTIA Certification: CompTIA CASP
Questions: 344 Q&A's Shared By: sapphire
Question 56

A security engineer receives the following findings from a recent security audit:

• Data should be protected based on user permissions and roles.

• User action tracking should be implemented across the network.

• Digital identities should be validated across the data access workflow.

Which of the following is the first action the engineer should take to address the findings?

Options:

A.

Implement continuous and context-based authentication and authorization

B.

Use an enhanced user credential provisioning workflow and data monitoring tools

C.

Improve federation services for digital identities and data access

D.

Deploy OpenID Connect for API authentication

Discussion
Question 57

A company wants to install a three-tier approach to separate the web. database, and application servers A security administrator must harden the environment which of the following is the best solution?

Options:

A.

Deploying a VPN to prevent remote locations from accessing server VLANs

B.

Configuring a SASb solution to restrict users to server communication

C.

Implementing microsegmentation on the server VLANs

D.

installing a firewall and making it the network core

Discussion
Question 58

An enterprise is deploying APIs that utilize a private key and a public key to ensure the connection string is protected. To connect to the API, customers must use the private key. Which of the following would best secure the REST API connection to the database while preventing the use of a hard-coded string in the request string?

Options:

A.

Implement a VPN for all APIs

B.

Sign the key with DSA

C.

Deploy MFA for the service accounts

D.

Utilize HMAC for the keys

Discussion
Robin
Cramkey is highly recommended.
Jonah Jun 10, 2026
Definitely. If you're looking for a reliable and effective study resource, look no further than Cramkey Dumps. They're simply wonderful!
Esmae
I highly recommend Cramkey Dumps to anyone preparing for the certification exam.
Mollie Jun 25, 2026
Absolutely. They really make it easier to study and retain all the important information. I'm so glad I found Cramkey Dumps.
Freddy
I passed my exam with flying colors and I'm confident who will try it surely ace the exam.
Aleksander Jun 12, 2026
Thanks for the recommendation! I'll check it out.
Victoria
Hey, guess what? I passed the certification exam! I couldn't have done it without Cramkey Dumps.
Isabel Jun 7, 2026
Same here! I was so surprised when I saw that almost all the questions on the exam were exactly what I found in their study materials.
Question 59

A security engineer wants to enhance the security posture of end-user systems in a Zero Trust environment. Given the following requirements:

. Reduce the ability for potentially compromised endpoints to contact command-and-control infrastructure.

. Track the requests that the malware makes to the IPs.

. Avoid the download of additional payloads.

Which of the following should the engineer deploy to meet these requirements?

Options:

A.

DNS sinkholing

B.

Browser isolation

C.

Zone transfer protection

D.

HIDS

Discussion
Page: 14 / 25
Title
Questions
Posted

CAS-005
PDF

$36.75  $104.99

CAS-005 Testing Engine

$43.75  $124.99

CAS-005 PDF + Testing Engine

$57.75  $164.99