CompTIA SecurityX (CAS-005) — Question 218

An IT department is currently working to implement an enterprise DLP solution. Due diligence and best practices must be followed in regard to mitigating risk. Which of the following ensures that authorized modifications are well planned and executed?

Answer options

• A. Risk management
• B. Network management
• C. Configuration management
• D. Change management

Correct answer: D

Explanation

The correct answer is D, Change management, as it specifically focuses on ensuring that all changes are systematically planned and implemented. Risk management (A) deals with identifying and mitigating risks but does not specifically address the process of managing changes. Network management (B) pertains to overseeing and maintaining computer networks, while configuration management (C) involves maintaining systems' configurations, but does not directly relate to the planning and execution of changes.