CompTIA SecurityX Certification (CAS-005) - CompTIA Actual Exam Questions
Last updated on April 15, 2026
A security engineer reviews an after action report from a previous security breach and notes a long lag time between detection and containment of a compromised account. The engineer suggests using SOAR to address this concern. Which of the following best explains the engineer's goal?
To prevent accounts from being compromised
To enable log correlation using machine learning
To orchestrate additional reporting for the security operations center
To prepare runbooks to automate future incident response
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
An administrator brings the company's fleet of mobile devices into its PKI in order to align device WLAN NAC configurations with existing workstations and laptops. Thousands of devices need to be reconfigured in a cost-effective, time-efficient, and secure manner. Which of the following actions best achieve this goal? (Select two)
Using the existing MDM solution to integrate with directory services for authentication and enrollment
Deploying netAuth extended key usage certificate templates
Deploying serverAuth extended key usage certificate templates
Deploying clientAuth extended key usage certificate templates
Configuring SCEP on the CA with an OTP for bulk device enrollment
Submitting a CSR to the CA to obtain a single certificate that can be used across all devices
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
A security analyst wants to use lessons learned from a poor incident response to reduce dwell lime in the future The analyst is using the following data points Which of the following would the analyst most likely recommend?
Adjusting the SIEM to alert on attempts to visit phishing sites
Allowing TRACE method traffic to enable better log correlation
Enabling alerting on all suspicious administrator behavior
utilizing allow lists on the WAF for all users using GFT methods
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
A developer makes a small change to a resource allocation module on a popular social media website and causes a memory leak. During a peak utilization period, several web servers crash, causing the website to go offline. Which of the following testing techniques is the most efficient way to prevent this from reoccurring?
Load
Smoke
Regression
Canary
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
An engineering team determines the cost to mitigate certain risks is higher than the asset values The team must ensure the risks are prioritized appropriately. Which of the following is the best way to address the issue?
Data labeling
Branch protection
Vulnerability assessments
Purchasing insurance
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Finish Practice?
Are you sure you want to finish? This will end your practice session.