Question 1

A subcontractor develops safety critical avionics software for a major aircraft manufacturer. After an incident, a third-party investigator recommends the company begin to employ formal methods in the development life cycle. Which of the following findings from the investigation most directly supports the investigator's recommendation?

Options :

A : The system's bill of materials failed to include commercial and open-source libraries.

B : The company lacks dynamic and Interactive application security testing standards.

C : The codebase lacks traceability to functional and non-functional requirements.

D : The implemented software inefficiently manages compute and memory resources.

Answer: C

Question 2

A hospital provides tablets to its medical staff to enable them to more quickly access and edit patients' charts.

The hospital wants to ensure that if a tablet is identified as lost or stolen and a remote command is issued, the

risk of data loss can be mitigated within seconds. The tablets are configured as follows:

• Full disk encryption is enabled.

• "Always On" corporate VPN is enabled.

• eFuse-backed keystore is enabled.

• Wi-Fi 6 is configured with SAE.

• Location services is disabled.

• Application allow list is unconfigured.

Assuming the hospital policy cannot be changed, which of the following is the best way to meet the hospital's

objective?

Options :

A : Revoke the user VPN and Wi-Fi certificates

B : Cryptographically erase FDE volumes

C : Issue new MFA credentials to all users

D : Configure the application allow list

Answer: B

Question 3

An attacker infiltrated the code base of a hardware manufacturer and inserted malware before the code was compiled. The malicious code is now running at the hardware level across a number of industries and sectors. Which of the following categories best describes this type of vendor risk?

Options :

A : SDLC attack

B : Side-load attack

C : Remote code signing

D : Supply chain attack

Answer: D

Question 4

An analyst has prepared several possible solutions to a successful attack on the company. The solutions need to be implemented with the least amount of downtime. Which of the following should the analyst perform?

Options :

A :

Implement all the solutions at once in a virtual lab and then run the attack simulation. Collect the metrics and then choose the best solution based on the metrics.

B :

Implement every solution one at a time in a virtual lab, running a metric collection each time. After the collection, run the attack simulation, roll back each solution, and then implement the next. Choose the best solution based on the best metrics.

C :

Implement every solution one at a time in a virtual lab, running an attack simulation each time while collecting metrics. Roll back each solution and then implement the next. Choose the best solution based on the best metrics.

D :

Implement all the solutions at once in a virtual lab and then collect the metrics. After collection, run the attack simulation. Choose the best solution based on the best metrics.

Answer: C

Question 5

An organization is required to

* Respond to internal andexternal inquiries in a timely manner

* Provide transparency.

* Comply with regulatory requirements

The organization has not experienced any reportable breaches but wants to be prepared if a breach occurs in

the future. Which of the following is the best way for the organization to prepare?

Options :

A : Outsourcing the handling of necessary regulatory filing to an external consultant

B : Integrating automated response mechanisms into the data subject access request process

C : Developing communication templates that have been vetted by internal and external counsel

D : Conducting lessons-learned activities and integrating observations into the crisis management plan

Answer: C

Free CAS-005 Mock Exam – Practice Online Confidently

Buying Options: