CompTIA
CAS-002 · Question #588
CAS-002 Question #588: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-002 to reveal the answer and full explanation for question #588. The question stem and answer options stay visible for context.
Question
A business owner has raised concerns with the Chief Information Security Officer (CISO) because money has been spent on IT security infrastructure, but corporate assets are still found to be vulnerable. The business recently implemented a patch management product and SOE hardening initiative. A third party auditor reported findings against the business because some systems were missing patches. Which of the following statements BEST describes this situation?
Options
- AThe business owner is at fault because they are responsible for patching the systems and
- BThe audit findings are invalid because remedial steps have already been applied to patch
- CThe CISO has not selected the correct controls and the audit findings should be assigned to
- DSecurity controls are generally never 100% effective and gaps should be explained to
Unlock CAS-002 to see the answer
You've previewed enough free CAS-002 questions. Unlock CAS-002 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.