CompTIA CASP+ (CAS-004) — Question 412

A company has identified a number of vulnerable, end-of-support systems with limited defensive capabilities. Which of the following would be the first step in reducing the attack surface in this environment?

Answer options

• A. Utilizing hardening recommendations
• B. Deploying IPS/IDS throughout the environment
• C. Installing and updating antivirus
• D. Installing all available patches

Correct answer: A

Explanation

The correct answer is A, as hardening recommendations focus on strengthening the security of existing systems by configuring them securely. While options B, C, and D are important security measures, they are not foundational steps in reducing the attack surface as effectively as hardening the systems themselves.