CV0-003 · Question #417
Developers are frustrated by the deployment delay caused by setting up permissions and firewall rules. Which of the following would be the BEST way to resolve this issue?
The correct answer is A. Automate security services through the system life cycle.. Automating security configuration tasks within the system life cycle eliminates the manual bottlenecks that cause deployment delays for developers.
Question
Developers are frustrated by the deployment delay caused by setting up permissions and firewall rules. Which of the following would be the BEST way to resolve this issue?
Options
- AAutomate security services through the system life cycle.
- BTrain all staff on ITIL v3 and document the service management.
- CEscalate to the change manager and reorganize the development team.
- DOutsource security services to a reputable organization.
How the community answered
(19 responses)- A74% (14)
- B5% (1)
- C5% (1)
- D16% (3)
Why each option
Automating security configuration tasks within the system life cycle eliminates the manual bottlenecks that cause deployment delays for developers.
Automating security services - such as permission provisioning and firewall rule setup - integrates these controls directly into the CI/CD pipeline, removing the need for manual intervention at each deployment. This DevSecOps approach ensures security is applied consistently and instantly at each stage of the system life cycle, resolving the delay without reducing security posture.
ITIL v3 training and documentation improve process maturity but do not automate or eliminate the manual security configuration steps that are causing the deployment delays.
Escalating to a change manager or reorganizing the development team is an organizational measure that does not address the root technical cause of manual permission and firewall setup.
Outsourcing security services adds coordination overhead with a third party and does not inherently automate the specific permission and firewall provisioning steps causing delays.
Concept tested: Automating security controls in DevSecOps lifecycle
Source: https://csrc.nist.gov/publications/detail/sp/800-204c/final
Topics
Community Discussion
No community discussion yet for this question.