Want to pass your CompTIA Advanced Security Practitioner (CASP+) CAS-004 exam in the very first attempt? Try Pass2lead! It is equally effective for both starters and IT professionals.
VCE
The principal security analyst for a global manufacturer is investigating a security incident related to abnormal behavior in the ICS network. A controller was restarted as part of the troubleshooting process, and the following issue was identified
when the controller was restarted:
SECURE BOOT FAILED:
FIRMWARE MISMATCH EXPECTED 0xFDC479 ACTUAL 0x79F31B
During the investigation, this modified firmware version was identified on several other controllers at the site. The official vendor firmware versions do not have this checksum. Which of the following stages of the MITRE ATTandCK framework for
ICS includes this technique?
A. Evasion
B. Persistence
C. Collection
D. Lateral movement
A company recently implemented a CI/CD pipeline and is now concerned with the current state of its software development processes. The company wants to augment its CI/CD pipeline with a solution to:
1.
Prevent code configuration drifts.
2.
Ensure coding standards are followed.
Which of the following should the company implement to address these concerns? (Choose two.)
A. Code signing
B. Fuzzers
C. Dynamic code analysis
D. Manual approval processes
E. Linters
F. Regression testing
An organization is developing a disaster recovery plan that requires data to be backed up and available at a moment's notice. Which of the following should the organization consider FIRST to address this requirement?
A. Implement a change management plan to ensure systems are using the appropriate versions.
B. Hire additional on-call staff to be deployed if an event occurs.
C. Design an appropriate warm site for business continuity.
D. Identify critical business processes and determine associated software and hardware requirements.