ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-003 All Questions

View all questions & answers for the CAS-003 exam
Go to Exam

Exam CAS-003 topic 1 question 255 discussion

Actual exam question from CompTIA's CAS-003
Question #: 255
Topic #: 1
[All CAS-003 Questions]

An organization is reviewing endpoint security solutions. In evaluating products, the organization has the following requirements:
1. Support server, laptop, and desktop infrastructure
2. Due to limited security resources, implement active protection capabilities
3. Provide users with the ability to self-service classify information and apply policies
4. Protect data-at-rest and data-in-use
Which of the following endpoint capabilities would BEST meet the above requirements? (Choose two.)

  • A. Data loss prevention
  • B. Application whitelisting
  • C. Endpoint detect and respond
  • D. Rights management
  • E. Log monitoring
  • F. Antivirus
Show Suggested Answer Hide Answer
Suggested Answer: CD 🗳️
by D1960 at Aug. 8, 2021, 11:49 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
AB1938
3 years, 1 month ago
Selected Answer: DF
I tried to get onboard with C&D - but, it does not make sense. The requirement states "due to limited security resources" - whether that is for staff or tools, implementing EDR requires a lot of overhead, configuring, etc. Plus, unless you tell it to block hashes and similar, it won't do much but detect and report. That, in my mind, isn't active protection. I am an SME for EDR at my company and I wouldn't use it for this case scenario, AV would've done a better job here, especially if you're using something modern like Windows Defender that allows a great level of granularity. "D" - well, that's obvious to all of us. Again, feel free to disagree but I don't "C" as a solution here.
upvoted 1 times
...
Big_Wes
3 years, 2 months ago
Selected Answer: CD
Answers given are correct, ignore this tater tot C. Due to limited security resources, implement active protection capabilities Support server, laptop, and desktop infrastructure D. Provide users with the ability to self-service classify information and apply policies
upvoted 1 times
...
D1960
3 years, 8 months ago
Maybe: A. Data loss prevention ? - implements active protection capabilities - protects data-at-rest, data-in-use, and data-in-motion
upvoted 2 times
D1960
3 years, 8 months ago
"Integrated DLP differs from its enterprise counterpart in that it offers a more compact solution, with features that are easy to access, including secure e-mail gateways (SEG), secure web gateways (SWG), **data classification tools**, e-mail encryption tools, ECM platforms, data discovery tools, and CASBs." https://cybersecurity.att.com/blogs/security-essentials/data-loss-prevention-explained
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago