CompTIA DataX (CNX-001) — Question 5
A network security engineer must secure a web application running on virtual machines in a public cloud. The virtual machines are behind an application load balancer. Which of the following technologies should the engineer use to secure the virtual machines? (Choose two.)
Answer options
- A. CDN
- B. DLP
- C. IDS
- D. WAF
- E. SIEM
- F. NSG
Correct answer: D, F
Explanation
The correct answers are WAF (Web Application Firewall) and NSG (Network Security Group). WAF protects web applications from common threats and vulnerabilities by filtering and monitoring HTTP traffic, while NSGs control inbound and outbound traffic to the virtual machines. The other options, such as CDN, DLP, IDS, and SIEM, do not directly secure the virtual machines in the context described.