CompTIA
CAS-001 · Question #138
CAS-001 Question #138: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-001 to reveal the answer and full explanation for question #138. The question stem and answer options stay visible for context.
Question
An organization has had component integration related vulnerabilities exploited in consecutive releases of the software it hosts. The only reason the company was able to identify the compromises was because of a correlation of slow server performance and an attentive security analyst noticing unusual outbound network activity from the application servers. End-to-end management of the development process is the responsibility of the applications development manager and testing is done by various teams of programmers. Which of the following will MOST likely reduce the likelihood of similar incidents?
Options
- AConduct monthly audits to verify that application modifications do not introduce new vulnerabilities.
- BImplement a peer code review requirement prior to releasing code into production.
- CFollow secure coding practices to minimize the likelihood of creating vulnerable applications.
- DEstablish cross-functional planning and testing requirements for software development activities.
Unlock CAS-001 to see the answer
You've previewed enough free CAS-001 questions. Unlock CAS-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.