CompTIA
CAS-003 · Question #564
CAS-003 Question #564: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #564. The question stem and answer options stay visible for context.
Question
A regional transportation and logistics company recently hired its first Chief Information Security Officer (CISO). The CISO's first project after onboarding involved performing a vulnerability assessment against the company's public facing network. The completed scan found a legacy collaboration platform application with a critically rated vulnerability. While discussing this issue with the line of business, the CISO learns the vulnerable application cannot be updated without the company incurring significant losses due to downtime or new software purchases. Which of the following BEST addresses these concerns?
Options
- AThe company should plan future maintenance windows such legacy application can be
- BThe CISO must accept the risk of the legacy application, as the cost of replacing the
- CThe company should implement a WAF in front of the vulnerable application to filter out any
- DThe company should build a parallel system and perform a cutover from the old application to
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.