Exam 6: CompTIA CySA+ Certification Exam (CS0-002)

Joe, a customer, wants to implement backup of his replicated VMs so production performance is not affected at the primary site. Which of the following backup methods would be the MOST appropriate?

A tenant has provisioned a new database server. It needs to add the database files in the exclusion list for security scanning, as it allows down the performance and locks the database file. Which of the following solutions must have this exclusion?

A company's Chief Information Officer (CIO) wants to manage PII by delegating access to sensitive files to the human resources department. The cloud engineer is tasked with selecting and implementing an appropriate technique to achieve the stated objective. Which of the following control methods would be BEST for the cloud engineer to implement?

While reviewing the auto-scaling events for a web application, a cloud engineer identified that the application upsized and downsized multiple times within the last hour. Which of the following should the cloud engineer do NEXT?

A user cannot consume SaaS services while working remotely. IP whitelisting is implemented to connect to a SaaS provider as a security mechanism. Which of the following describes the MOST likely reason why the user cannot access the SaaS resources?

A cloud administrator notices one of the servers is using the wrong set of NTP servers. The administrator needs to avoid the same issue in the future but needs to minimize administration resources. Which of the following tools should a cloud administrator deploy to meet this requirement?

A cloud engineer is deploying a new application to a multicloud platform. After running the script, the engineer sees the VMs were not created on one of the cloud providers. The engineer confirms the proper credentials are being used for all cloud providers and there is available capacity. Which of the following is the MOST likely cause of the deployment failure?

Asynchronous data replication for a SaaS application occurs between Regions A and B. Users in Region A are reporting that the most current data for an insurance claims application is not available to them until after 11:30 a.m. The cloud administrator for this SaaS provider checks the network utilization and finds that only about 10% of the network bandwidth is being used. Which of the following describes how the cloud administrator could BEST resolve this issue?

A cloud service company is proposing a solution to a major sporting venue. The solution offers 99.999% availability during special events, which is proven through specialized testing. Which of the following techniques should be applied to confirm the high availability claimed by the company? (Select TWO.)

A new cloud infrastructure needs to meet the following requirements: Resources are accessible to internal and external clients. Existing hardware assets are utilized. Security controls are managed by company employees. Which of the following deployment models BEST fit these requirements?

A non-critical vulnerability has been identified by a Linux vendor, who has released a patch and recommends that it be applied immediately. Which of the following is the BEST plan for the cloud administrator to install the patch?

A software solution must be deployed based on the most granular access level. Which of the following methods should be used to meet the requirements?

A systems administrator migrated a company's CRM middleware to a VPC and left the database in the company's datacenter. The CRM application is now accessible over the Internet. A VPN between the company network and the VPC is used for the middleware to communicate with the database server. Since the migration, users are experiencing high application latency. Which of the following should the company do to resolve the latency issue?

A mobile subscriber is experiencing random limited-service outages. Customers report being unable to make calls or browse. The service provider management console is not showing any alarms, errors, or critical logs, but does show a large number of connection request failures. Which of the following could be the problem?

Given the IaaS cloud service model, at which of the following layers of the platform does microsegmentation BEST apply?

A company has developed a SaaS product for the financial services industry. The Chief Executive Officer (CEO) of the SaaS company has engaged an independent third party to run tests against its platform. Which of the following is the MOST likely test the third party has been engaged to perform?

A company upgraded a hosted vulnerability scanner to the latest version, and now tickets are not being created to assign critical vulnerabilities. After confirming the ticketing issue, all the scanning services are confirmed to be running on the VM. Which of the following is the MOST likely cause and best method to fix the issue?

A company has been migrating a significant number of its on-premises applications to various SaaS providers. The IT department has noticed the following: User account management has become challenging. User account compromises have increased. Accessing various SaaS applications is challenging. Which of the following should the IT security department implement to BEST resolve the issue? (Select THREE).

A business is demanding faster IT services turnaround from its IT groups. The current lead time between request and delivery is three weeks for a task that would take a competitor two days. An architect is asked to develop a solution to reduce the lead time of the request while ensuring adherence to the company policies. Which of the following is the BEST approach to achieve the stated objective?

A cloud administrator is configuring a bastion host. The bastion host will be used to administer systems in the cloud remotely from the administrator's on-premises desktop. The administrator is given the following requirements: Ensure port 22 is open on the host and only allow the public IP of the on-premises router/firewall. Ensure port 3389 is open on the host and only allow the public IP of the on-premises router/firewall. Harden these services with PKI (where applicable). Given this scenario, which of the following should the administrator utilize to BEST address these requirements? (Select THREE).