CompTIA SecurityX (CAS-005) — Question 121

An organization purchased a new manufacturing facility and the security administrator needs to:

• Implement security monitoring.
• Protect any non-traditional device(s)/network(s).
• Ensure no downtime for critical systems.

Which of the following strategies best meets these requirements?

Answer options

• A. Configuring honeypots in the internal network to capture malicious activity
• B. Analyzing system behavior and responding to any increase in activity
• C. Applying updates and patches soon after they have been released
• D. Observing the environment and proactively addressing any malicious activity

Correct answer: D

Explanation

The correct answer is D, as it emphasizes the importance of continuous observation and proactive measures to prevent malicious activities, thus ensuring critical systems are not compromised. Option A focuses on capturing malicious activity but does not actively prevent it. Option B is reactive rather than proactive, and while Option C is important for maintaining security, it does not address the monitoring and protection of non-traditional devices.