Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA Exam CAS-005 Topic 1 Question 7 Discussion

Actual exam question for CompTIA's CAS-005 exam
Question #: 7
Topic #: 1
[All CAS-005 Questions]

Which of the following is the security engineer most likely doing?

Show Suggested Answer Hide Answer
Suggested Answer: A

In the given scenario, the security engineer is likely examining login activities and their associated geolocations. This type of analysis is aimed at identifying unusual login patterns that might indicate an impossible travel scenario. An impossible travel scenario is when a single user account logs in from geographically distant locations in a short time, which is physically impossible. By assessing login activities using geolocation, the engineer can tune alerts to identify and respond to potential security breaches more effectively.


by Domonique at Dec 08, 2024, 09:59 PM

Limited Time Offer

25%

Off

Get Premium CAS-005 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Cristal
3 months ago
If I were a security engineer, I'd be tempted to just go with option D and call it a day. Baselining is like painting a target on the wall and letting the bad guys have their fun.
upvoted 0 times
...
Eileen
3 months ago
Option A, gotta love those impossible travel rate alerts! Keeps the hackers on their toes.
upvoted 0 times
...
Leonida
3 months ago
Reporting on remote login activities, as in option B, sounds more like a management task than a security engineer's job.
upvoted 0 times
Cristy
2 months ago
D) Baselining user behavior to support advanced analytics
upvoted 0 times
...
Lonna
2 months ago
C) Threat hunting for suspicious activity from an insider threat
upvoted 0 times
...
Ona
2 months ago
A) Assessing log in activities using geolocation to tune impossible Travel rate alerts
upvoted 0 times
...
...
Carmela
3 months ago
Baselining user behavior is important for detecting anomalies in the system.
upvoted 0 times
...
Larae
3 months ago
Threat hunting for insider threats, as in option C, is a common security engineer's responsibility.
upvoted 0 times
...
Cherilyn
3 months ago
I'd go with option D. Baselining user behavior is crucial for behavioral analytics and detecting anomalies.
upvoted 0 times
Cherry
2 months ago
Baselining user behavior is definitely crucial for behavioral analytics. Option D is the way to go.
upvoted 0 times
...
Dominga
3 months ago
I agree, option D is important for detecting anomalies and supporting advanced analytics.
upvoted 0 times
...
Harris
3 months ago
Option D seems like the best choice. Baselining user behavior is key for advanced analytics.
upvoted 0 times
...
...
Paola
4 months ago
I believe the security engineer could also be baselining user behavior to support advanced analytics.
upvoted 0 times
...
Merissa
4 months ago
Option A seems the most appropriate for a security engineer. Geolocation-based monitoring can help detect suspicious login attempts.
upvoted 0 times
Ernestine
3 months ago
C) Threat hunting for suspicious activity from an insider threat
upvoted 0 times
...
Sheridan
4 months ago
A) Assessing log in activities using geolocation to tune impossible Travel rate alerts
upvoted 0 times
...
...
Leota
4 months ago
I agree with Lasandra, threat hunting is crucial to prevent insider threats.
upvoted 0 times
...
Lasandra
4 months ago
I think the security engineer is threat hunting for suspicious activity from an insider threat.
upvoted 0 times
...

Save Cancel