CompTIA CA1-005 Exam Questions

Question 6 of 115

A manufacturing plant is updating its IT services. During discussions, the senior management team created the following list of considerations:
• Staff turnover is high and seasonal.
• Extreme conditions often damage endpoints.
• Losses from downtime must be minimized.
• Regulatory data retention requirements exist.
Which of the following best addresses the considerations?

Establishing further environmental controls to limit equipment damage

Using a non-persistent virtual desktop interface with thin clients

Deploying redundant file servers and configuring database journaling

Maintaining an inventory of spare endpoints for rapid deployment

Correct Answer: B

Question 7 of 115

A company runs a DAST scan on a web application. The tool outputs the following recommendations:
• Use Cookie prefixes.
• Content Security Policy - SameSite=strict is not set.
Which of the following vulnerabilities has the tool identified?

RCE

XSS

CSRF

TOCTOU

Correct Answer: C

Question 8 of 115

A company hired an email service provider called my-email.com to deliver company emails. The company started having several issues during the migration. A security engineer is troubleshooting and observes the following configuration snippet:
Exam CA1-005: Question 8 - Image 1

Which of the following should the security engineer modify to fix the issue? (Choose two.)

The email CNAME record must be changed to a type A record pointing to 192.168.1.11

The TXT record must be changed to "v=dmarc ip4:192.168.1.10 include:my-email.com ~all"

The srv01 A record must be changed to a type CNAME record pointing to the email server

The email CNAME record must be changed to a type A record pointing to 192.168.1.10

The TXT record must be changed to "v=dkim ip4:192.168.1.11 include :my-email.com ~all"

The TXT record must be changed to "v=spf ip4:192.168.1.10 include :my-email.com ~all"

The srv01 A record must be changed to a type CNAME record pointing to the web01 server

Correct Answer: D, F

Question 9 of 115

A security analyst is reviewing the following log:
Exam CA1-005: Question 9 - Image 1

Which of the following possible events should the security analyst investigate further?

A macro that was prevented from running

A text file containing passwords that were leaked

A malicious file that was run in this environment

A PDF that exposed sensitive information improperly

Correct Answer: C

Question 10 of 115

After a company discovered a zero-day vulnerability in its VPN solution, the company plans to deploy cloud-hosted resources to replace its current on-premises systems. An engineer must find an appropriate solution to facilitate trusted connectivity. Which of the following capabilities is the most relevant?

Container orchestration

Microsegmentation

Conditional access

Secure access service edge

Correct Answer: D