1. Home
  2. CAS-003 Exam

Smartly Prepare Exam with Free Online CAS-003 Practice Test

We offer the latest CAS-003 practice test designed for free and effective online CompTIA Advanced Security Practitioner (CASP+) certification preparation. It's a simulation of the real CAS-003 exam experience, built to help you understand the structure, complexity, and topics you'll face on exam day.

Exam Code: CAS-003
Exam Questions: 690
CompTIA Advanced Security Practitioner (CASP+)
Updated: 10 Jul, 2025
Viewing Page : 1 - 69
Practicing : 1 - 5 of 690 Questions
Question 1

A Chief Information Security Officer (CISO) is developing a new BIA for the organization. The CISO wants to gather requirements to determine the appropriate RTO and RPO for the organization's ERP. Which of the following should the CISO interview as MOST qualified to provide RTO/RPO metrics?

Options :
Answer: C
Question 2

During a security assessment, an organization is advised of inadequate control over network segmentation. The assessor explains that the organization's reliance on VLANs to segment traffic is insufficient to provide segmentation based on regulatory standards.
Which of the following should the organization consider implementing along with VLANs to provide a greater level of segmentation?

Options :
Answer: D
Question 3

During a routine network scan, a security administrator discovered an unidentified service running on a new embedded and unmanaged HVAC controller, which is used to monitor the company's datacenter
Port state
161/UDP open
162/UDP open
163/TCP open
The enterprise monitoring service requires SNMP and SNMPTRAP connectivity to operate. Which of the following should the security administrator implement to harden the system?

Options :
Answer: D
Question 4

The Chief Executive Officer (CEO) instructed the new Chief Information Security Officer (CISO) to provide a list of enhancements to the company's cybersecurity operation. As a result, the CISO has identified the need to align security operations with industry best practices. Which of the following industry references is appropriate to accomplish this?

Options :
Answer: B
Question 5

Ann, a member of the finance department at a large corporation, has submitted a suspicious email she received to the information security team. The team was not expecting an email from Ann, and it contains a PDF file inside a ZIP compressed archive. The information security learn is not sure which files were opened. A security team member uses an air-gapped PC to open the ZIP and PDF, and it appears to be a social engineering attempt to deliver an exploit.
Which of the following would provide greater insight on the potential impact of this attempted attack?

Options :
Answer: B
Viewing Page : 1 - 69
Practicing : 1 - 5 of 690 Questions

© Copyrights FreePDFQuestions 2025. All Rights Reserved

We use cookies to ensure that we give you the best experience on our website (FreePDFQuestions). If you continue without changing your settings, we'll assume that you are happy to receive all cookies on the FreePDFQuestions.