Exam Name: | CompTIA SecurityX Certification Exam | ||
Exam Code: | CAS-005 Dumps | ||
Vendor: | CompTIA | Certification: | SecurityX |
Questions: | 249 Q&A's | Shared By: | fearne |
A security engineer must ensure that sensitive corporate information is not exposed if a company laptop is stolen. Which of the following actions best addresses this requirement?
During a periodic internal audit, a company identifies a few new, critical security controls that are missing. The company has a mature risk management program in place, and the following requirements must be met:
The stakeholders should be able to see all the risks.
The risks need to have someone accountable for them.
Which of the following actions should the GRC analyst take next?
Which of the following are risks associated with vendor lock-in? (Select two).
Company A acquired Company B and needs to determine how the acquisition will impact the attack surface of the organization as a whole. Which of the following is the best way to achieve this goal? (Select two).
Implementing DLP controls preventing sensitive data from leaving Company B's network