CompTIA SecurityX (CAS-005) — Question 197

An organization hires a security consultant to establish a SOC that includes a threat-modeling function. During initial activities, the consultant works with system engineers to identify antipatterns within the environment. Which of the following is most critical for the engineers to disclose to the consultant during this phase?

Answer options

• A. Results from the most recent infrastructure access review
• B. A listing of unpatchable IoT devices in use in the data center
• C. Network and data flow diagrams covering the production environment
• D. Results from the most recent software composition analysis
• E. A current inventory of cloud resources and SaaS products in use

Correct answer: C

Explanation

The correct answer is C because network and data flow diagrams are essential for understanding how data moves through the system and identifying potential vulnerabilities. While the other options provide valuable information, they do not offer the same foundational insight into the production environment's architecture and operations that the diagrams do.