CCCS-203B · Question #275
CCCS-203B Question #275: Real Exam Question with Answer & Explanation
The correct answer is A. Enforce pre-deployment scanning to block images with critical vulnerabilities from being deployed.. Option A: Pre-deployment scanning with enforcement ensures that only secure images are deployed, blocking those with critical vulnerabilities. This helps mitigate security risks before they reach production. Option B: While notifying administrators about vulnerabilities is useful
Question
Options
- AEnforce pre-deployment scanning to block images with critical vulnerabilities from being deployed.
- BAllow all container images to be deployed, regardless of vulnerabilities, but notify administrators if
- COnly assess images manually when security teams request a scan.
- DEnable post-deployment scanning to assess vulnerabilities after an image has already been
Explanation
Option A: Pre-deployment scanning with enforcement ensures that only secure images are deployed, blocking those with critical vulnerabilities. This helps mitigate security risks before they reach production. Option B: While notifying administrators about vulnerabilities is useful, allowing all images regardless of severity increases risk by deploying insecure workloads. Option C: Relying on manual assessments makes security processes inefficient and inconsistent, leading to gaps in protection. Option D: Post-deployment scanning is useful for continuous monitoring, but it does not prevent vulnerable images from being deployed in the first place.
Community Discussion
No community discussion yet for this question.