nerdexam
ExamsCAS-003Questions#262
CompTIA

CAS-003 · Question #262

CAS-003 Question #262: Real Exam Question with Answer & Explanation

The correct answer is A: Isolate the system on a secure network to limit its contact with other systems. The payroll system is not meeting security policy due to missing OS security patches. We cannot apply the patches to the system because the vendor states that the system is only supported on the current OS patch level. Therefore, we need another way of securing the system. We can

Question

A critical system audit shows that the payroll system is not meeting security policy due to missing OS security patches. Upon further review, it appears that the system is not being patched at all. The vendor states that the system is only supported on the current OS patch level. Which of the following compensating controls should be used to mitigate the vulnerability of missing OS patches on this system?

Options

  • AIsolate the system on a secure network to limit its contact with other systems
  • BImplement an application layer firewall to protect the payroll system interface
  • CMonitor the system's security log for unauthorized access to the payroll application
  • DPerform reconciliation of all payroll transactions on a daily basis

Explanation

The payroll system is not meeting security policy due to missing OS security patches. We cannot apply the patches to the system because the vendor states that the system is only supported on the current OS patch level. Therefore, we need another way of securing the system. We can improve the security of the system and the other systems on the network by isolating the payroll system on a secure network to limit its contact with other systems. This will reduce the likelihood of a malicious user accessing the payroll system and limit any damage to other systems if the payroll system is attacked.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-003 Practice