Performing CyberOps Using Cisco Security Technologies (CBRCOR) — Question 97

A security expert is investigating a breach that resulted in a $32 million loss from customer accounts. Hackers were able to steal API keys and two-factor codes due to a vulnerability that was introduced in a new code a few weeks before the attack. Which step was missed that would have prevented this breach?

Answer options

• A. use of the Nmap tool to identify the vulnerability when the new code was deployed
• B. implementation of a firewall and intrusion detection system
• C. implementation of an endpoint protection system
• D. use of SecDevOps to detect the vulnerability during development

Correct answer: D

Explanation

The correct answer is D because SecDevOps integrates security into the development process, allowing for early detection of vulnerabilities before deployment. The other options, while important, do not address the root cause of the issue which was the vulnerability in the code introduced during development.