nerdexam
ExamsCAS-002Questions#94
CompTIA

CAS-002 · Question #94

CAS-002 Question #94: Real Exam Question with Answer & Explanation

The correct answer is B: Conduct a vulnerability assessment of the standard image and remediate findings.. Conducting a vulnerability assessment of the standard system image identifies weaknesses in the baseline configuration before deployment, directly addressing the root cause of recurring malware attacks.

Question

After a recent outbreak of malware attacks, the Chief Information Officer (CIO) tasks the new security manager with determining how to keep these attacks from reoccurring. The company has a standard image for all laptops/workstations and uses a host-based firewall and anti-virus. Which of the following should the security manager suggest to INCREASE each system's security level?

Options

  • AUpgrade all system's to use a HIPS and require daily anti-virus scans.
  • BConduct a vulnerability assessment of the standard image and remediate findings.
  • CUpgrade the existing NIDS to NIPS and deploy the system across all network segments.
  • DRebuild the standard image and require daily anti-virus scans of all PCs and laptops.

Explanation

Conducting a vulnerability assessment of the standard system image identifies weaknesses in the baseline configuration before deployment, directly addressing the root cause of recurring malware attacks.

Common mistakes.

  • A. Upgrading to HIPS and increasing anti-virus scan frequency adds detection layers but does not identify or remediate the underlying vulnerabilities in the standard image that allowed the initial outbreak.
  • C. Upgrading NIDS to NIPS is a network-level control that can block known attack traffic but does not address vulnerabilities on individual host systems or the standard image itself.
  • D. Rebuilding the standard image without a prior vulnerability assessment and adding daily scans is reactive and does not guarantee the new image is hardened against the same vulnerabilities.

Concept tested. Vulnerability assessment of system baseline images

Reference. https://csrc.nist.gov/publications/detail/sp/800-40/rev-4/final

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice