CompTIA SecurityX (CAS-005) — Question 142

In order to follow new regulations, the Chief Information Security Officer plans to use a defense-in-depth approach for a perimeter network. Which of the following protections would best achieve this goal?

Answer options

• A. SAST, DAST, IAST
• B. NGFW, IPS, EDR
• C. SASE, IDS, SAST
• D. CASB, DLP, EDR

Correct answer: B

Explanation

The correct answer is B, as Next-Generation Firewalls (NGFW), Intrusion Prevention Systems (IPS), and Endpoint Detection and Response (EDR) provide layered security measures that protect against various threats at the perimeter. The other options, while important for security, do not collectively offer the same level of comprehensive perimeter defense as the selected option.