CompTIA CASP+ Practice Test – Career Employer Test Prep

Submit Cancel

Welcome to your CompTIA CASP+ Practice Test

CompTIA CASP+: Security Architecture

In the context of security architecture, what is the primary purpose of a Data Loss Prevention (DLP) system?

A. To enhance network speed and efficiency

B. To monitor and protect sensitive data from unauthorized access or exfiltration

C. To provide redundancy in data storage

D. To encrypt data in transit

None

1 out of 90

CompTIA CASP+: Security Architecture

In secure system architecture, what is the main function of a demilitarized zone (DMZ)?

A. To provide a secure area for data backups

B. To act as a buffer zone between the internal network and untrusted external networks

C. To encrypt data passing through the network

D. To increase network bandwidth

None

2 out of 90

CompTIA CASP+: Security Architecture

What is a primary security benefit of using network segmentation in an organizational infrastructure?

A. Reduced complexity of network management

B. Increased data storage capacity

C. Limiting the scope of potential attacks

D. Enhancing the speed of data transmission

None

3 out of 90

CompTIA CASP+: Security Architecture

What is the primary purpose of implementing an Intrusion Prevention System (IPS) in network security architecture?

A. To analyze network traffic

B. To provide redundancy in data storage

C. To actively block and prevent identified threats

D. To increase network data transmission speed

None

4 out of 90

CompTIA CASP+: Security Architecture

Which of the following best describes a Zero Trust security model in network architecture?

A. Trusting all internal network devices by default

B. Implementing a perimeter-based security approach

C. Verifying the trust of all devices, both inside and outside the network, before granting access

D. Placing complete trust in external networks

None

5 out of 90

CompTIA CASP+: Security Architecture

Which technology is most effective for isolating and securing a sensitive application in an enterprise environment?

A. VLAN

B. Firewall

C. Virtualization

D. Intrusion Detection System (IDS)

None

6 out of 90

CompTIA CASP+: Security Architecture

Which of the following best describes a Zero Trust security model in the context of Security Architecture?

A. Trusting all users within the organization

B. Trusting no one, regardless of their location relative to the network perimeter

C. Trusting users based on their organizational role

D. Trusting users within a network perimeter, but not external users

None

7 out of 90

CompTIA CASP+: Security Architecture

In enterprise security, what is the main function of a Network Access Control (NAC.) system?

A. To enhance the speed of data transfer

B. To provide a backup solution for data

C. To control access to network resources based on compliance with security policies

D. To encrypt all data passing through the network

None

8 out of 90

CompTIA CASP+: Security Architecture

What is the main security advantage of implementing a hardware security module (HSM) in an organization?

A. It acts as a physical firewall

B. It offers a secure environment for cryptographic operations

C. It enhances network bandwidth

D. It increases storage capacity for sensitive data

None

9 out of 90

10.

CompTIA CASP+: Security Architecture

Which type of security control is an air-gapped computer network?

A. Technical control

B. Administrative control

C. Physical control

D. Compensating control

None

10 out of 90

11.

CompTIA CASP+: Security Architecture

In a security architecture context, what is the role of a Security Information and Event Management (SIEM) system?

A. To manage network bandwidth

B. To encrypt data storage

C. To provide physical security to data centers

D. To aggregate, analyze, and report on security data and events

None

11 out of 90

12.

CompTIA CASP+: Security Architecture

What is the primary security benefit of using a Virtual Private Network (VPN) in an enterprise?

A. Increasing the speed of network connections

B. Providing additional storage space for data

C. Encrypting data transmission over unsecured networks

D. Managing user access to network resources

None

12 out of 90

13.

CompTIA CASP+: Security Architecture

Which architecture design principle is most effective in preventing single points of failure in a network?

A. Defense in depth

B. Network segmentation

C. Redundancy

D. Least privilege

None

13 out of 90

14.

CompTIA CASP+: Security Architecture

In security architecture, what is the primary purpose of implementing a Secure Socket Tunneling Protocol (SSTP)?

A. To create a secure connection over a non-secure network like the Internet

B. To encrypt emails

C. To provide a firewall

D. To enhance database security

None

14 out of 90

15.

CompTIA CASP+: Security Architecture

Which cryptographic protocol is best suited for securing communication between web servers and browsers?

A. Secure Shell (SSH)

B. Transport Layer Security (TLS)

C. Wired Equivalent Privacy (WEP)

D. Secure/Multipurpose Internet Mail Extensions (S/MIME)

None

15 out of 90

16.

CompTIA CASP+: Security Architecture

In the context of secure architecture, what is the primary function of a Web Application Firewall (WAF)?

A. To increase web server processing power

B. To filter, monitor, and block HTTP traffic to and from a web application

C. To provide a redundant system for web servers

D. To encrypt website data

None

16 out of 90

17.

CompTIA CASP+: Security Architecture

What is the primary security concern when implementing a Security Information and Event Management (SIEM) system?

A. The physical security of SIEM servers

B. Integration with existing network infrastructure

C. Protection of log information and analysis

D. Ensuring high availability of the SIEM system

None

17 out of 90

18.

CompTIA CASP+: Security Architecture

In Security Architecture, what is the primary purpose of implementing a Secure Sockets Layer (SSL) termination proxy?

A. To distribute network traffic evenly across several servers

B. To intercept and decrypt SSL traffic for inspection before re-encrypting and sending it to the server

C. To increase the SSL encryption strength

D. To serve as a backup for SSL certificates

None

18 out of 90

19.

CompTIA CASP+: Security Architecture

In the context of Security Architecture, what is the primary function of a WAF (Web Application Firewall)?

A. To monitor network traffic

B. To filter and monitor HTTP/HTTPS traffic to and from a web application

C. To encrypt web traffic

D. To serve as an endpoint protection platform

None

19 out of 90

20.

CompTIA CASP+: Security Architecture

In Security Architecture, what is the primary purpose of a Data Loss Prevention (DLP) system?

A. To prevent unauthorized network access

B. To detect and prevent the unauthorized transmission of sensitive information

C. To ensure high availability of data

D. To manage user access rights

None

20 out of 90

21.

CompTIA CASP+: Security Architecture

Which protocol is primarily used for secure file transfer over a network in a Unix-like environment?

A. FTP

B. SFTP

C. SNMP

D. SMTP

None

21 out of 90

22.

CompTIA CASP+: Security Architecture

What is the main security advantage of using virtualization in an enterprise environment?

A. Reduced need for physical security

B. Isolation of different operating system environments

C. Decreased network traffic

D. Simplified software updates

None

22 out of 90

23.

CompTIA CASP+: Security Architecture

What is the primary benefit of implementing an Intrusion Prevention System (IPS) in a network?

A. To encrypt data traffic

B. To proactively detect and prevent malicious activities

C. To provide a backup for data

D. To manage network bandwidth

None

23 out of 90

24.

CompTIA CASP+: Security Architecture

In the context of enterprise security, what is the primary purpose of implementing a Network Access Control NAC system?

A. To manage software installations on network devices

B. To monitor real-time network traffic

C. To enforce security policy compliance on devices attempting to access network resources

D. To encrypt data transmissions on the network

None

24 out of 90

25.

CompTIA CASP+: Security Architecture

Which cryptographic algorithm is primarily used for secure key exchange over an unsecured medium in a network?

A. AES

B. RSA

C. SHA-256

D. Diffie-Hellman

None

25 out of 90

26.

CompTIA CASP+: Security Architecture

In Security Architecture, which of the following best describes Attribute-Based Access Control ABAC?

A. Access control based on the attributes of users, resources, and environmental conditions

B. Access control based solely on user roles within an organization

C. Access control based on a user's rank in the organizational hierarchy

D. Access control based on predefined security groups

None

26 out of 90

27.

CompTIA CASP+: Security Operations

In a security operations context, which tool is primarily used for automated vulnerability scanning and assessment?

A. SIEM

B. IDS/IPS

C. NAC

D. Nessus

None

27 out of 90

28.

CompTIA CASP+: Security Operations

Which of the following best describes a honeypot in network security?

A. A tool that prevents access to malicious websites

B. A decoy system designed to lure and analyze attackers

C. A software that detects and blocks malware

D. A protocol for secure communication over a network

None

28 out of 90

29.

CompTIA CASP+: Security Operations

What is the primary purpose of Security Information and Event Management (SIEM) in an enterprise environment?

A. Patch management

B. Real-time analysis of security alerts

C. Physical access control

D. User authentication

None

29 out of 90

30.

CompTIA CASP+: Security Operations

What is the primary goal of a Data Loss Prevention (DLP) system in an organization?

A. To monitor and control data usage

B. To encrypt sensitive data

C. To provide redundant data storage

D. To increase data processing speed

None

30 out of 90

31.

CompTIA CASP+: Security Operations

Which of the following is a primary security concern when implementing a Bring Your Own Device BYOD policy?

A. Ensuring network bandwidth

B. Managing device compatibility

C. Securing data on personal devices

D. Providing technical support for various devices

None

31 out of 90

32.

CompTIA CASP+: Security Operations

In cybersecurity, what is the main function of a Security Operations Center SOC?

A. Developing security policies

B. Conducting security audits

C. Coordinating security incident response

D. Managing IT infrastructure

None

32 out of 90

33.

CompTIA CASP+: Security Operations

In the context of digital forensics, what is the primary purpose of preserving the integrity of evidence?

A. To ensure faster analysis

B. To comply with data privacy laws

C. To maintain its admissibility in legal proceedings

D. To reduce storage requirements

None

33 out of 90

34.

CompTIA CASP+: Security Operations

What is the primary purpose of employing a Red Team in cybersecurity operations?

A. To manage the organization's firewalls

B. To conduct realistic adversarial attacks for testing defenses

C. To develop and update security policies

D. To provide cybersecurity training to employees

None

34 out of 90

35.

CompTIA CASP+: Security Operations

Which technology is primarily used in Intrusion Prevention Systems (IPS) to detect and prevent attacks?

A. Signature-based detection

B. Token-based authentication

C. Virtual Private Network (VPN)

D. Data encryption

None

35 out of 90

36.

CompTIA CASP+: Security Operations

Which of the following is a primary concern when deploying Security Information and Event Management (SIEM) systems in a large organization?

A. Data redundancy

B. Scalability and data ingestion rates

C. User interface customization

D. Integration with physical security systems

None

36 out of 90

37.

CompTIA CASP+: Security Operations

In the context of digital forensics, what is the primary purpose of chain of custody?

A. To maintain data integrity during transit

B. To ensure the physical security of data

C. To document the handling of evidence

D. To provide a backup of the evidence

None

37 out of 90

38.

CompTIA CASP+: Security Operations

In cybersecurity, what is the main function of a Security Operations Center SOC?

A. Developing security policies

B. Conducting security audits

C. Coordinating security incident response

D. Managing IT infrastructure

None

38 out of 90

39.

CompTIA CASP+: Security Operations

In the context of digital forensics, what is the significance of the "first responder"?

A. The individual responsible for data recovery

B. The first person to detect a security incident

C. The first person to collect and preserve digital evidence

D. The individual in charge of communicating with law enforcement

None

39 out of 90

40.

CompTIA CASP+: Security Operations

What is the primary purpose of a File Integrity Monitoring (FIM) system in an organization's security infrastructure?

A. To prevent unauthorized data exfiltration

B. To detect changes to critical system files

C. To ensure data redundancy

D. To monitor network bandwidth usage

None

40 out of 90

41.

CompTIA CASP+: Security Operations

Which of the following best describes the role of a Purple Team in cybersecurity operations?

A. Conducting external security audits

B. Managing organizational security policies

C. Integrating and optimizing Red and Blue Team activities

D. Overseeing regulatory compliance

None

41 out of 90

42.

CompTIA CASP+: Security Operations

In a security operations context, what is the primary function of User and Entity Behavior Analytics UEBA?

A. Monitoring and managing user access rights

B. Detecting anomalies in user and entity behavior

C. Encrypting user data

D. Conducting background checks on new users

None

42 out of 90

43.

CompTIA CASP+: Security Operations

Which technology is typically employed in Intrusion Detection Systems (IDS) for pattern matching in network traffic?

A. Deep packet inspection

B. SSL/TLS decryption

C. Quality of Service (QoS) analysis

D. Bandwidth throttling

None

43 out of 90

44.

CompTIA CASP+: Security Operations

In the context of security operations, what is the primary goal of implementing Security Orchestration, Automation, and Response (SOAR)?

A. To manually respond to security incidents

B. To automate routine security tasks and coordinate responses

C. To encrypt sensitive data automatically

D. To increase the physical security of data centers

None

44 out of 90

45.

CompTIA CASP+: Security Operations

What is the primary purpose of using sandboxing in cybersecurity?

A. To provide a secure environment for data storage

B. To isolate and analyze suspicious code or files

C. To manage user access and authentication

D. To increase network bandwidth efficiency

None

45 out of 90

46.

CompTIA CASP+: Security Operations

Which of the following best describes the function of a Security Assertion Markup Language (SAML) in a federated identity management system?

A. Encrypting data at rest

B. Facilitating single sign-on (SSO) across different systems

C. Managing network firewalls

D. Conducting vulnerability assessments

None

46 out of 90

47.

CompTIA CASP+: Security Operations

What is the primary benefit of using an Endpoint Detection and Response (EDR) solution in an organization's cybersecurity strategy?

A. Reducing the need for user authentication

B. Managing email servers

C. Continuously monitoring and responding to endpoint threats

D. Increasing network speed

None

47 out of 90

48.

CompTIA CASP+: Security Operations

What is the primary function of a Security Information and Event Management (SIEM) system in a Security Operations Center SOC?

A. Managing network configurations

B. Real-time monitoring and analysis of security alerts

C. Physical security management

D. Data encryption and decryption

None

48 out of 90

49.

CompTIA CASP+: Security Operations

In the context of Incident Response, what is the primary goal of the containment phase?

A. Identifying the root cause of an incident

B. Preventing further spread of an incident

C. Collecting evidence for legal actions

D. Restoring systems to normal operation

None

49 out of 90

50.

CompTIA CASP+: Security Operations

Which of the following is a primary use case for deploying a Network Intrusion Detection System (NIDS)?

A. Encrypting network traffic

B. Managing network bandwidth

C. Monitoring network traffic for suspicious activities

D. Load balancing across servers

None

50 out of 90

51.

CompTIA CASP+: Security Operations

What is the main purpose of employing threat intelligence in cybersecurity operations?

A. To provide data backup solutions

B. To assist in the proactive identification of emerging threats

C. To manage user access controls

D. To encrypt sensitive data transmissions

None

51 out of 90

52.

CompTIA CASP+: Security Operations

In cybersecurity, what is the primary function of a Security Operations Center SOC?

A. Developing security policies

B. Conducting security audits

C. Coordinating security incident response

D. Managing IT infrastructure

None

52 out of 90

53.

CompTIA CASP+: Security Operations

Which technology is primarily used in an Intrusion Prevention System (IPS) to prevent known threats?

A. Signature-based detection

B. Machine learning algorithms

C. Token-based authentication

D. Data loss prevention (DLP)

None

53 out of 90

54.

CompTIA CASP+: Security Engineering and Cryptography

In the context of cryptographic algorithms, which of the following is considered a symmetric key algorithm?

A. RSA

B. ECC

C. AES

D. PGP

None

54 out of 90

55.

CompTIA CASP+: Security Engineering and Cryptography

What is the main purpose of using a cryptographic hash function?

A. To encrypt and decrypt data

B. To verify the authenticity of data

C. To generate a fixed-size string from input data

D. To establish a secure communication channel

None

55 out of 90

56.

CompTIA CASP+: Security Engineering and Cryptography

What is the primary purpose of using a Public Key Infrastructure (PKI)?

A. To manage network configurations

B. To authenticate users on a network

C. To manage the creation, distribution, and revocation of digital certificates

D. To encrypt internet traffic

None

56 out of 90

57.

CompTIA CASP+: Security Engineering and Cryptography

In quantum cryptography, what is the main principle that ensures security?

A. Heisenberg's Uncertainty Principle

B. Shannon's theory of information

C. Moore's law

D. Kerckhoffs's principle

None

57 out of 90

58.

CompTIA CASP+: Security Engineering and Cryptography

In the field of cryptography, what is the primary purpose of using an Elliptic Curve Cryptography ECC algorithm?

A. To ensure data integrity

B. To facilitate secure key exchange

C. To provide digital signatures

D. To enhance encryption strength with shorter key lengths

None

58 out of 90

59.

CompTIA CASP+: Security Engineering and Cryptography

Which cryptographic attack method involves decrypting a ciphertext by trying every possible key?

A. Man-in-the-middle attack

B. Brute force attack

C. Cryptanalysis

D. Side-channel attack

None

59 out of 90

60.

CompTIA CASP+: Security Engineering and Cryptography

Which cryptographic concept ensures that a message has not been altered during transmission?

A. Confidentiality

B. Integrity

C. Non-repudiation

D. Authentication

None

60 out of 90

61.

CompTIA CASP+: Security Engineering and Cryptography

Which of the following is a characteristic of a symmetric encryption algorithm?

A. It uses different keys for encryption and decryption.

B. It is primarily used for creating digital signatures.

C. It is based on the concept of public and private key pairs.

D. It uses the same key for both encryption and decryption.

None

61 out of 90

62.

CompTIA CASP+: Security Engineering and Cryptography

What is the primary advantage of implementing a Zero Trust network architecture?

A. It simplifies network management.

B. It eliminates the need for encryption.

C. It minimizes the attack surface within the network.

D. It reduces the need for regular software updates.

None

62 out of 90

63.

CompTIA CASP+: Security Engineering and Cryptography

Which cryptographic attack involves attempting all possible key combinations until the correct one is found?

A. Man-in-the-middle attack

B. Brute-force attack

C. Dictionary attack

D. Replay attack

None

63 out of 90

64.

CompTIA CASP+: Security Engineering and Cryptography

In terms of security engineering, what is the main goal of implementing a Security Development Lifecycle (SDL)?

A. To decrease software development time

B. To enhance collaboration between development teams

C. To integrate security practices into software development processes

D. To reduce the cost of software development

None

64 out of 90

65.

CompTIA CASP+: Security Engineering and Cryptography

In cryptography, what is the primary function of a Certificate Authority CA?

A. To generate public and private keys

B. To distribute digital certificates

C. To validate user identities

D. To issue and manage digital certificates

None

65 out of 90

66.

CompTIA CASP+: Security Engineering and Cryptography

Which cryptographic protocol is designed to secure HTTP traffic on the Internet?

A. SSH

B. S/MIME

C. TLS

D. PGP

None

66 out of 90

67.

CompTIA CASP+: Security Engineering and Cryptography

What is the primary purpose of using a Hardware Security Module (HSM) in a security infrastructure?

A. To manage network configurations

B. To enhance the physical security of servers

C. To provide secure cryptographic key generation and storage

D. To monitor and log security events

None

67 out of 90

68.

CompTIA CASP+: Security Engineering and Cryptography

What is the main security advantage of using blockchain technology?

A. It simplifies the encryption process.

B. It offers a centralized database management system.

C. It provides a high level of data transparency.

D. It ensures data immutability and tamper resistance.

None

68 out of 90

69.

CompTIA CASP+: Security Engineering and Cryptography

In security engineering, what is the primary purpose of an Intrusion Detection System (IDS)?

A. To prevent unauthorized access to network resources

B. To detect and alert on potential security threats and breaches

C. To encrypt data transmissions

D. To manage user access controls

None

69 out of 90

70.

CompTIA CASP+: Security Engineering and Cryptography

Which technology is essential for securing virtualized environments in a cloud infrastructure?

A. Network Address Translation (NAT)

B. Virtual Private Network (VPN)

C. Virtual Machine Escape Protection

D. Software-Defined Networking (SDN)

None

70 out of 90

71.

CompTIA CASP+: Security Engineering and Cryptography

What is the primary purpose of employing Forward Secrecy in a cryptographic communication protocol?

A. To ensure data integrity

B. To prevent the reuse of encryption keys

C. To allow for non-repudiation

D. To protect past sessions against future key compromises

None

71 out of 90

72.

CompTIA CASP+: Security Engineering and Cryptography

In the context of secure software engineering, what is "fuzzing" used for?

A. Performance testing

B. User interface design

C. Security vulnerability testing

D. Network optimization

None

72 out of 90

73.

CompTIA CASP+: Security Engineering and Cryptography

Which cryptographic concept involves splitting data into parts, each of which is less sensitive, and only when combined do they reveal sensitive information?

A. Data obfuscation

B. Cryptographic hashing

C. Secret sharing

D. Key escrow

None

73 out of 90

74.

CompTIA CASP+: Security Engineering and Cryptography

In the context of digital certificates, what does the term "certificate pinning" refer to?

A. Associating a certificate with a specific IP address

B. Hardcoding the certificate details in an application

C. Regularly updating certificates

D. Distributing certificates through a secure channel

None

74 out of 90

75.

CompTIA CASP+: Security Engineering and Cryptography

What is the primary security benefit of using containerization in application deployment?

A. Enhanced network speed

B. Reduced memory usage

C. Isolation of application environments

D. Simplified user authentication

None

75 out of 90

76.

CompTIA CASP+: Security Engineering and Cryptography

In the context of secure communications, what is the primary function of the Diffie-Hellman algorithm?

A. Digital signature creation

B. Symmetric key encryption

C. Secure key exchange

D. Hashing of data

None

76 out of 90

77.

CompTIA CASP+: Governance Risk and Compliance

Which framework primarily focuses on improving the maturity of an organization's security processes?

A. ISO/IEC 27001

B. NIST Cybersecurity Framework

C. COBIT

D. Capability Maturity Model Integration (CMMI)

None

77 out of 90

78.

CompTIA CASP+: Governance Risk and Compliance

What is the primary focus of the General Data Protection Regulation (GDPR) in the context of data privacy?

A. Protecting the privacy and personal data of EU citizens

B. Securing corporate financial information

C. Standardizing cybersecurity laws in the EU

D. Regulating the export of digital technology

None

78 out of 90

79.

CompTIA CASP+: Governance Risk and Compliance

What is the primary purpose of employing Separation of Duties (SoD.) in an IT environment?

A. To improve operational efficiency

B. To reduce workload on employees

C. To prevent conflicts of interest and fraud

D. To speed up decision-making processes

None

79 out of 90

80.

CompTIA CASP+: Governance Risk and Compliance

Which of the following is a key component of a Business Continuity Plan (BCP)?

A. Data encryption standards

B. Disaster Recovery Plan

C. Password management policies

D. Compliance auditing procedures

None

80 out of 90

81.

CompTIA CASP+: Governance Risk and Compliance

What is the primary objective of implementing an Information Security Management System (ISMS) in an organization?

A. To ensure compliance with industry regulations

B. To enhance the physical security of facilities

C. To manage and minimize information security risks

D. To increase the speed of IT processes

None

81 out of 90

82.

CompTIA CASP+: Governance Risk and Compliance

In the context of IT governance, what is the main focus of the ITIL framework?

A. Managing IT risks

B. Delivering IT services effectively and efficiently

C. Ensuring legal compliance

D. Protecting data privacy

None

82 out of 90

83.

CompTIA CASP+: Governance Risk and Compliance

In information security, what is the primary purpose of a Gap Analysis?

A. To identify the differences between current and desired performance

B. To calculate the financial loss potential of a security breach

C. To determine the effectiveness of the training program

D. To assess the efficiency of the IT infrastructure

None

83 out of 90

84.

CompTIA CASP+: Governance Risk and Compliance

Which of the following best describes the role of a Data Protection Officer (DPO) in an organization?

A. Managing the IT infrastructure

B. Overseeing compliance with data protection laws and regulations

C. Developing and implementing security policies

D. Conducting regular security audits

None

84 out of 90

85.

CompTIA CASP+: Governance Risk and Compliance

What is the primary purpose of a Risk Appetite Statement in an organization's risk management process?

A. To document the acceptable level of risk the organization is willing to take

B. To record the identified risks in the organization

C. To detail the insurance coverage of the organization

D. To outline the responsibilities of the risk management team

None

85 out of 90

86.

CompTIA CASP+: Governance Risk and Compliance

What is the primary objective of conducting Third-Party Vendor Risk Assessments in an organization?

A. To evaluate the performance of third-party vendors

B. To ensure that vendors comply with security policies and standards

C. To negotiate better contract terms

D. To assess the market reputation of vendors

None

86 out of 90

87.

CompTIA CASP+: Governance Risk and Compliance

What does the term "Due Diligence" refer to in the context of information security governance?

A. The technical measures implemented to protect data

B. The investigation and evaluation of risks involved in a business arrangement

C. The process of training employees on security policies

D. The regular auditing of security systems

None

87 out of 90

88.

CompTIA CASP+: Governance Risk and Compliance

What is the primary goal of implementing Security Controls based on the principle of "Least Privilege"?

A. To enhance the efficiency of IT processes

B. To minimize the potential damage from a security breach

C. To comply with industry standards

D. To reduce the cost of security implementations

None

88 out of 90

89.

CompTIA CASP+: Governance Risk and Compliance

Which regulatory compliance standard is primarily focused on securing and protecting cardholder data?

A. HIPAA

B. GDPR

C. PCI-DSS

D. SOX

None

89 out of 90

90.

CompTIA CASP+: Governance Risk and Compliance

In the context of IT governance, what does COBIT primarily focus on?

A. Data privacy laws

B. IT service management

C. IT governance and management practices

D. Network security protocols

None

90 out of 90

Time is Up!

Time's up

Leave a Comment Cancel reply