CompTIA
CAS-003 · Question #845
CAS-003 Question #845: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #845. The question stem and answer options stay visible for context.
Question
The Chief Information Security Officer (CISO) of a power generation facility is concerned about being able to detect missing security updates on the critical infrastructure in use at the facility. Most of this critical infrastructure consists of ICS and SCADA systems that are maintained by vendors, and the vendors have warned the CISO that proxying network traffic is likely to cause a DoS condition. Which of the following would be BEST to address the CISO's concerns while keeping the critical systems functional?
Options
- AConfiguring the existing SIEM to ingest all log files properly
- BImplementing a passive vulnerability scanning solution
- CDeploying a data diode for internal websites
- DAdding more frequent antivirus and anti-malware signature updates
- EAdjusting file access rules to use the concept of least privilege
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.