nerdexam
Isaca

CDPSE · Question #212

Which of the following would MOST effectively reduce the impact of a successful breach through a remote access solution?

The correct answer is A. Compartmentalizing resource access. Compartmentalizing resource access (A) directly limits blast radius - if an attacker compromises a remote session, they can only reach the segmented resources that account has access to, not the entire network. This is a core principle of least-privilege and zero-trust architectu

Privacy Architecture

Question

Which of the following would MOST effectively reduce the impact of a successful breach through a remote access solution?

Options

  • ACompartmentalizing resource access
  • BRegular testing of system backups
  • CMonitoring and reviewing remote access logs
  • DRegular physical and remote testing of the incident response plan

How the community answered

(49 responses)
  • A
    86% (42)
  • B
    8% (4)
  • C
    4% (2)
  • D
    2% (1)

Explanation

Compartmentalizing resource access (A) directly limits blast radius - if an attacker compromises a remote session, they can only reach the segmented resources that account has access to, not the entire network. This is a core principle of least-privilege and zero-trust architectures applied to impact reduction.

Why the distractors are wrong:

  • B (Backup testing) aids recovery after a breach, not reducing the damage while it's happening.
  • C (Log monitoring) improves detection, not containment - you may spot the breach faster, but the attacker's reach is unchanged.
  • D (IR plan testing) improves response readiness, again helping after the fact rather than limiting what an attacker can touch mid-breach.

The key distinction the question is testing is impact reduction vs. detection/response/recovery. Compartmentalization is the only choice that structurally restricts what a successful attacker can do.

Memory tip: Think "blast radius." Compartmentalization = smaller blast radius. Detection and response = managing the blast after it happens. If a question asks about reducing impact, look for the answer that limits what an attacker can reach, not what you can see or recover.

Topics

#Remote Access Security#Compartmentalization#Access Control#Breach Mitigation

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice