CompTIA CASP+ (CAS-003) — Question 100

A large industrial system's smart generator monitors the system status and sends alerts to third-party maintenance personnel when critical failures occur. While reviewing the network logs, the company's security manager notices the generator's IP is sending packets to an internal file server's IP. Which of the following mitigations would be BEST for the security manager to implement while maintaining alerting capabilities?

Answer options

• A. Segmentation
• B. Firewall whitelisting
• C. Containment
• D. Isolation

Correct answer: A

Explanation

Segmentation is the most suitable approach here as it allows the generator to remain operational while restricting its access to critical resources, thus maintaining alerting capabilities. Firewall whitelisting, containment, and isolation may either limit functionality too much or not adequately protect the internal network from potential threats posed by the generator's communications.