ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 392 discussion

Actual exam question from CompTIA's CAS-004
Question #: 392
Topic #: 1
[All CAS-004 Questions]

The Chief Security Officer (CSO) requested the security team implement technical controls that meet the following requirements:

• Monitors traffic to and from both local NAS and cloud-based file repositories
• Prevents on-site staff who are accessing sensitive customer PII documents on file repositories from accidentally or deliberately sharing sensitive documents on personal SaaS solutions
• Uses document attributes to reduce false positives
• Is agentless and not installed on staff desktops or laptops

Which of the following when installed and configured would BEST meet the CSO’s requirements? (Choose two.)

  • A. DLP
  • B. NGFW
  • C. UTM
  • D. UEBA
  • E. CASB
  • F. HIPS
Show Suggested Answer Hide Answer
Suggested Answer: AE 🗳️
by nuel_12 at Nov. 18, 2023, 12:18 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
041ba31
7 months ago
Selected Answer: AE
The best answers are A. DLP (Data Loss Prevention) and E. CASB (Cloud Access Security Broker). DLP: Data Loss Prevention solutions monitor and control data transfer, ensuring that sensitive information is not shared inappropriately. It can use document attributes to reduce false positives and does not need to be installed on individual desktops or laptops. CASB: Cloud Access Security Brokers provide security controls specifically for cloud services, monitoring traffic between local NAS, cloud-based repositories, and SaaS solutions, and can enforce policies to prevent data leakage.
upvoted 1 times
...
ElDirec
11 months ago
Selected Answer: AE
he technologies that would BEST meet the CSO’s requirements are A. DLP (Data Loss Prevention) and E. CASB (Cloud Access Security Broker). DLP solutions can monitor and control data transfers, which can help prevent sensitive documents from being shared on personal SaaS solutions. They can also use document attributes to reduce false positives. CASBs provide visibility into and control over cloud services, which can help monitor traffic to and from cloud-based file repositories. They can also enforce security policies across multiple cloud services, which can help prevent sensitive documents from being shared on personal SaaS solutions. While the other options (NGFW, UTM, UEBA, HIPS) can provide some level of security, they do not directly address all of the specific requirements provided by the CSO.
upvoted 2 times
...
nuel_12
1 year, 1 month ago
Selected Answer: AE
the provided answer is correct to meet the requirement
upvoted 4 times
biggytech
1 year, 1 month ago
agreed
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel