CS0-003 · Question #453
CS0-003 Question #453: Real Exam Question with Answer & Explanation
The correct answer is A: Awareness training and education. Awareness training and education are essential to help staff recognize phishing emails and understand safe email practices, particularly when using legacy applications that might not have the latest security features. Training helps build a culture of security mindfulness, which
Question
A Chief Information Security Officer (CISO) has determined through lessons learned and an associated after-action report that staff members who use legacy applications do not adequately understand how to differentiate between non-malicious emails and phishing emails. Which of the following should the CISO include in an action plan to remediate this issue?
Options
- AAwareness training and education
- BReplacement of legacy applications
- COrganizational governance
- DMultifactor authentication on all systems
Explanation
Awareness training and education are essential to help staff recognize phishing emails and understand safe email practices, particularly when using legacy applications that might not have the latest security features. Training helps build a culture of security mindfulness, which is critical for preventing social engineering attacks.
Topics
Community Discussion
No community discussion yet for this question.