CompTIA CASP+ (CAS-003) — Question 258

A company is transitioning to a new VDI environment, and a system engineer is responsible for developing a sustainable security strategy for the VDIs.
Which of the following is the MOST appropriate order of steps to be taken?

Answer options

• A. Firmware update, OS patching, HIDS, antivirus, baseline, monitoring agent
• B. OS patching, baseline, HIDS, antivirus, monitoring agent, firmware update
• C. Firmware update, OS patching, HIDS, antivirus, monitoring agent, baseline
• D. Baseline, antivirus, OS patching, monitoring agent, HIDS, firmware update

Correct answer: A

Explanation

The correct sequence starts with firmware updates to ensure the underlying hardware is secure, followed by OS patching to address software vulnerabilities. HIDS and antivirus are then implemented to monitor and protect the system, after which a baseline is established, and a monitoring agent is deployed to maintain ongoing security oversight. The other options either misplace the foundational steps or delay critical security measures.