CAS-005 · Question #20
CAS-005 Question #20: Real Exam Question with Answer & Explanation
The correct answer is A: Implementing allow lists. Implementing allow lists restricts communication to only approved addresses or services, reducing exposure to unauthorized access. Establishing a site-to-site IPSec VPN secures data transmission over the internet, protecting OT systems from interception or tampering.
Question
A company isolates its ОТ systems from other areas of the corporate network. These systems are required to report usage information over the internet to the vendor. Which of the following best prevents compromise or sabotage? (Choose two.)
Options
- AImplementing allow lists
- BMonitoring network behavior
- CEncrypting data at rest
- DPerforming boot Integrity checks
- EExecuting daily health checks
- FImplementing a site-to-site IPSec VPN
Explanation
Implementing allow lists restricts communication to only approved addresses or services, reducing exposure to unauthorized access. Establishing a site-to-site IPSec VPN secures data transmission over the internet, protecting OT systems from interception or tampering.
Community Discussion
No community discussion yet for this question.