nerdexam
F5

101 · Question #393

Network Security personnel are entirely responsible for web application security.

The correct answer is B. False. Web application security is a shared responsibility across development, operations, and security teams, not solely network security personnel.

Section 4: Security Basics

Question

Network Security personnel are entirely responsible for web application security.

Options

  • ATrue
  • BFalse

How the community answered

(34 responses)
  • A
    9% (3)
  • B
    91% (31)

Why each option

Web application security is a shared responsibility across development, operations, and security teams, not solely network security personnel.

ATrue

Assigning sole responsibility to network security ignores application-layer vulnerabilities such as SQL injection or XSS that must be addressed by developers and AppSec teams.

BFalseCorrect

Web application security requires collaboration among developers, application owners, security architects, and network security teams. No single group holds complete responsibility because vulnerabilities can be introduced at the code level, infrastructure level, or configuration level. A defense-in-depth model distributes accountability across all stakeholders.

Concept tested: Shared responsibility model for web application security

Source: https://owasp.org/www-project-application-security-verification-standard/

Topics

#web application security#security responsibility#shared security model#network security

Community Discussion

No community discussion yet for this question.

Full 101 Practice