CompTIA CASP+ (CAS-004) — Question 421

A company is migrating its data center to the cloud. Some hosts had been previously isolated, but a risk assessment convinced the engineering team to reintegrate the systems.

Because the systems were isolated, the risk associated with vulnerabilities was low. Which of the following should the security team recommend be performed before migrating these servers to the cloud?

Answer options

• A. Performing patching and hardening
• B. Deploying host and network IDS
• C. Implementing least functionality and time-based access
• D. Creating a honeypot and adding decoy files

Correct answer: A

Explanation

The correct answer is A, as patching and hardening are essential to address known vulnerabilities and enhance the security posture of the servers before migration. Options B, C, and D, while beneficial security measures, do not directly address existing vulnerabilities that could be exploited during or after the migration process.