SY0-301 · Question #379
A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other software upda
The correct answer is C. Application patch management. The scenario explicitly identifies the gap: there is no process for updating software other than the OS. Application patch management directly addresses this by establishing a formal, repeatable process for identifying, testing, and applying patches to applications, closing known
Question
A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other software updates. Which of the following processes could MOST effectively mitigate these risks?
Options
- AApplication hardening
- BApplication change management
- CApplication patch management
- DApplication firewall review
How the community answered
(39 responses)- A5% (2)
- C92% (36)
- D3% (1)
Explanation
The scenario explicitly identifies the gap: there is no process for updating software other than the OS. Application patch management directly addresses this by establishing a formal, repeatable process for identifying, testing, and applying patches to applications, closing known vulnerabilities that attackers could exploit. Application hardening reduces attack surface through configuration but does not address unpatched vulnerabilities. Change management governs the process of making changes but does not specifically focus on vulnerability remediation. Firewall review improves network-layer defenses but does not remediate application-level vulnerabilities caused by missing patches.
Topics
Community Discussion
No community discussion yet for this question.