Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 129

A security engineer deploys an enterprise-wide host/endpoint technology for all of the company's corporate PCs. Management requests the engineer to block a selected set of applications on all PCs.
Which technology should be used to accomplish this task?

Answer options

Correct answer: A

Explanation

The correct option is A, application whitelisting/blacklisting, as it allows administrators to define which applications are permitted or denied on the systems. The other options, such as network NGFW, host-based IDS, and antivirus/antispyware software, focus on different aspects of security and do not specifically address the need to block certain applications on endpoint devices.