CompTIA A+ Core 1 (CA1-005) — Question 1

A security administrator is performing a gap assessment against a specific OS benchmark. The benchmark requires the following configurations be applied to endpoints:
• Full disk encryption
• Host-based firewall
• Time synchronization
• Password policies
• Application allow listing
• Zero Trust application access
Which of the following solutions best addresses the requirements? (Choose two.)

Answer options

• A. MDM
• B. CASB
• C. SBoM
• D. SCAP
• E. SASE
• F. HIDS

Correct answer: A, D

Explanation

MDM (Mobile Device Management) is effective for implementing policies such as full disk encryption and application allow listing on endpoints. SCAP (Security Content Automation Protocol) helps in compliance assessment and vulnerability management, making it suitable for gap assessments as required by the benchmark. The other options, while useful for various security functions, do not directly address the full set of requirements specified.