A security architect has been engaged during the implementation stage of the SDLC to review a new HR software installation for security gaps. With the project
under a tight schedule to meet market commitments on project delivery, which of the following security activities should be prioritized by the security architect?
(Select TWO).
A.
Perform penetration testing over the HR solution to identify technical vulnerabilities
B.
Perform a security risk assessment with recommended solutions to close off high-rated risks
C.
Secure code review of the HR solution to identify security gaps that could be exploited
D.
Perform access control testing to ensure that privileges have been configured correctly
E.
Determine if the information security standards have been complied with by the project
Wrote the CAS-002 exam and passed with a good score!
77 questions in total, started with 10 SIMs: configuring the firewall ACL, placing equipments in the network to stop attacks, and so on.
I mainly learned the CASP Cert Guide books and practised PassLeader CAS-002 dumps with 900q (new version, helped a lot for my passing).
Dumps on this site are not valid, only 2 SIMs and few MCQs are from them, other 8 SIMs and many MCQs are missing!!!
Recommend to practise PassLeader 900q CAS-002 dumps, especially the last 240 questions. Here you can get PassLeader CAS-002 dumps:
http://www.comptiadump.com/category/comptia-advanced-security-practitioner-casp-certification/cas-002-dumps
GOOD LUCK!!
Besides, download that PassLeader CAS-002 dumps in PDF from:
https://drive.google.com/open?id=0B-ob6L_QjGLpenQtV3dLMDkyM0U
Regards!!!