CS0-003 · Question #313
CS0-003 Question #313: Real Exam Question with Answer & Explanation
The correct answer is A: CIS Benchmarks. Explanation CIS Benchmarks are the ideal resource here because they provide prescriptive, step-by-step hardening guidelines specifically designed for configuring operating systems, cloud environments, and server images - making them a perfect fit for creating a secure, deployable
Question
An organization would like to ensure its cloud infrastructure has a hardened configuration. A requirement is to create a server image that can be deployed with a secure template. Which of the following is the best resource to ensure secure configuration?
Options
- ACIS Benchmarks
- BPCI DSS
- COWASP Top Ten
- DISO 27001
Explanation
Explanation
CIS Benchmarks are the ideal resource here because they provide prescriptive, step-by-step hardening guidelines specifically designed for configuring operating systems, cloud environments, and server images - making them a perfect fit for creating a secure, deployable server template. PCI DSS (Choice B) is a compliance standard focused on protecting payment card data, not a technical configuration guide for building hardened server images. OWASP Top Ten (Choice C) addresses web application security vulnerabilities, not infrastructure or server configuration hardening. ISO 27001 (Choice D) is a broad information security management framework that defines policies and controls at an organizational level, rather than providing specific technical configuration instructions.
🧠 Memory Tip: Think of CIS Benchmarks as a "recipe book for secure builds" - when a question mentions hardening, secure images, or configuration templates, CIS Benchmarks is almost always the answer. The other options are frameworks or standards that tell you what to protect, while CIS tells you exactly how to configure it.
Topics
Community Discussion
No community discussion yet for this question.