SY0-701 · Question #145
SY0-701 Question #145: Real Exam Question with Answer & Explanation
The correct answer is D: Change management procedure. Change management procedure (D) is correct because setting up new firewall rules modifies a critical system configuration, and change management ensures the change is properly reviewed, approved, documented, tested, and rolled back if needed - preventing unauthorized or poorly pl
Question
Which of the following should a security administrator adhere to when setting up a new set of firewall rules?
Options
- ADisaster recovery plan
- BIncident response procedure
- CBusiness continuity plan
- DChange management procedure
Explanation
Change management procedure (D) is correct because setting up new firewall rules modifies a critical system configuration, and change management ensures the change is properly reviewed, approved, documented, tested, and rolled back if needed - preventing unauthorized or poorly planned changes from disrupting operations or introducing vulnerabilities.
Why the distractors are wrong:
- A. Disaster recovery plan - This outlines how to restore systems after a catastrophic failure; it doesn't govern routine configuration changes.
- B. Incident response procedure - This is triggered after a security event occurs (breach, malware, etc.); firewall rule setup is a planned activity, not a reactive one.
- C. Business continuity plan - This focuses on keeping critical functions running during a disruption; it's a strategic document, not a procedural guide for system changes.
Memory tip: Think "change = change management." Any time you are intentionally modifying infrastructure (firewall rules, ACLs, server configs), the answer is almost always change management - it's the gate all planned modifications must pass through before implementation.
Topics
Community Discussion
No community discussion yet for this question.