CompTIA CASP+ (CAS-004) — Question 442

A systems administrator discovered that several updates were missing on a system, even though a vulnerability management process is in place. Which of the following processes would allow the administrator to update the systems consistently and provide an accurate view of the system security posture?

Answer options

• A. Instituting a rigorous change control process
• B. Planning and conducting an annual security review
• C. Continuously monitoring system audit logs
• D. Implementing a scan-patch-scan methodology

Correct answer: D

Explanation

The correct answer is D, as the scan-patch-scan methodology ensures that vulnerabilities are identified through scanning, patched accordingly, and then verified through another scan, thereby maintaining consistent updates and a clear security posture. Options A and B do not directly address the need for consistent updates, while option C does not provide a method for applying patches.