ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 315 discussion

Actual exam question from CompTIA's CAS-004
Question #: 315
Topic #: 1
[All CAS-004 Questions]

A new, online file hosting service is being offered. The service has the following security requirements:

• Threats to customer data integrity and availability should be remediated first.
• The environment should be dynamic to match increasing customer demands.
• The solution should not interfere with customers’ ability to access their data at anytime.
• Security analysts should focus on high-risk items.

Which of the following would BEST satisfy the requirements?

  • A. Expanding the use of IPS and NGFW devices throughout the environment
  • B. Increasing the number of analysts to identify risks that need remediation
  • C. Implementing a SOAR solution to address known threats
  • D. Integrating enterprise threat feeds in the existing SIEM
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by CXSSP at Sept. 10, 2023, 8:45 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ThatGuyOverThere
7 months, 3 weeks ago
Selected Answer: C
C seems like the best answer, especially given the wording about the environment being dynamic and analysts focusing on the high risk items. SOAR would be able to handle dynamic customer demands because it doesn't matter how much there is to do when it's automatically resolving issues. This frees up the security analysts to focus on high risk items while the SOAR resolves the known threats.
upvoted 2 times
...
Skarakkio
8 months, 1 week ago
The correct IPTABLES configuration to select is the one showed in the 4th tab.
upvoted 2 times
...
CXSSP
9 months, 2 weeks ago
Selected Answer: C
C. Implementing a SOAR solution to address known threats A Security Orchestration, Automation, and Response (SOAR) solution aligns best with the requirements outlined for the new online file hosting service: Threat Remediation: A SOAR solution can automate the response to known threats, ensuring that threats to customer data integrity and availability are addressed promptly. Dynamic Environment: SOAR solutions are designed to be dynamic and adaptable. They can scale and adjust to match increasing customer demands without manual intervention. Uninterrupted Access: A properly implemented SOAR solution should not interfere with customers' ability to access their data at any time. It operates in the background, automating responses while allowing normal operations to continue. Focus on High-Risk Items: SOAR solutions can prioritize and focus security analysts' attention on high-risk items by automating the handling of known and lower-level threats, allowing analysts to concentrate on more critical issues.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel