nerdexam
CompTIA

SY0-301 · Question #379

A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other software upda

The correct answer is C. Application patch management. The scenario explicitly identifies the gap: there is no process for updating software other than the OS. Application patch management directly addresses this by establishing a formal, repeatable process for identifying, testing, and applying patches to applications, closing known

Security operations

Question

A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other software updates. Which of the following processes could MOST effectively mitigate these risks?

Options

  • AApplication hardening
  • BApplication change management
  • CApplication patch management
  • DApplication firewall review

How the community answered

(39 responses)
  • A
    5% (2)
  • C
    92% (36)
  • D
    3% (1)

Explanation

The scenario explicitly identifies the gap: there is no process for updating software other than the OS. Application patch management directly addresses this by establishing a formal, repeatable process for identifying, testing, and applying patches to applications, closing known vulnerabilities that attackers could exploit. Application hardening reduces attack surface through configuration but does not address unpatched vulnerabilities. Change management governs the process of making changes but does not specifically focus on vulnerability remediation. Firewall review improves network-layer defenses but does not remediate application-level vulnerabilities caused by missing patches.

Topics

#patch management#application security#vulnerability mitigation#software updates

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice