| Exam Number: CAS-005 | Length of test: 165 mins |
| Exam Name: CompTIA SecurityX | Number of questions in the actual exam: 90 |
| Format: PDF, VPLUS | Passing Score: The exam is pass/fail; no scaled score is provided |
Total Questions: 134
FREE
Premium VPLUS file
Download practice test questions
| Title | Size | Hits | Download |
|---|---|---|---|
| CompTIA.CAS-005.by,Atony.38q | 903.71 KB | 20 | Download |
| CompTIA.CAS-005.by,Atony.38q | 1.20 MB | 20 | Download |
| Exam Codes | CAS-004 | CAS-005 |
| Launch Date | October 6, 2021 | December 17, 2024 |
| Exam Description | CASP+ covers the technical knowledge and skills required to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise while considering the impact of governance, risk, and compliance requirements. | SecurityX (formerly CASP+) covers the technical knowledge and skills required to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise while considering the impact of governance, risk, and compliance requirements. |
| Number of Questions | Maximum of 90 questions | Maximum of 90 questions |
| Type of Questions | Multiple-choice and performance-based | Multiple-choice and performance-based |
| Length of Test | 165Â Minutes | 165Â Minutes |
| Passing Score | This test has no scaled score; it’s pass/fail only. | This test has no scaled score; it’s pass/fail only. |
| Recommended Experience | A minimum of ten years of general hands-on IT experience, with at least five years of broad hands-on security experience. | Minimum 10 years general hands on IT experience, 5 years being hands-on security, with Network+, Security+, CySA+, Cloud+ and PenTest+ or equivalent knowledge |
| Languages | English, Japanese and Thai | TBD |
| Retirement | June 17, 2025 | Generally three years after launch |
| Testing Provider | Pearson VUE
|
Pearson VUE
|
Some new sample questions:
Question:
A financial services organization is using Al lo fully automate the process of deciding client loan rates Which of the following should the organization be most concerned about from a privacy perspective?
A. Model explainability
B. Credential Theft
C. Possible prompt Injections
D. Exposure to social engineering
Question:
Company A acquired Company B and needs to determine how the acquisition will impact the attack surface of the organization as a whole. Which of the following is the best way to achieve this goal? (Select two).
Implementing DLP controls preventing sensitive data from leaving Company B’s network
A. Documenting third-party connections used by Company B
B. Reviewing the privacy policies currently adopted by Company B
C. Requiring data sensitivity labeling tor all files shared with Company B
D. Forcing a password reset requiring more stringent passwords for users on Company B’s network
E. Performing an architectural review of Company B’s network
Question:
Asecuntv administrator is performing a gap assessment against a specific OS benchmark The benchmark requires the following configurations be applied to endpomts:
* Full disk encryption
* Host-based firewall
* Time synchronization
* Password policies
* Application allow listing
* Zero Trust application access
Which of the following solutions best addresses the requirements? (Select two).
A. CASB
B. SBoM
C. SCAP
D. SASE
E. HIDS
Question:
A company wants to implement hardware security key authentication for accessing sensitive information systems The goal is to prevent unauthorized users from gaining access with a stolen password Which of the following models should the company implement to bst solve this issue?
A. Rule based
B. Time-based
C. Role based
D. Context-based
………