CompTIA CySA+ (CS0-001) — Question 196

The service desk has received several calls from the remote workforce group stating they have experienced degradation in services The security analyst discovers all the remote laptops have become infected with a known virus that was introduced by a known application weakness. Which of the following is the
BEST course of action to ensure the remote workers do not experience this issue in the future?

Answer options

• A. Communicate to the remote workers that company laptops are for work purposes only.
• B. Configure the devices to access the Internet through the corporate network only.
• C. Ensure devices receive software updates and definitions upon connecting to the internal network.
• D. Develop and configure a whitelist on each laptop for authored, business-related websites only.

Correct answer: C

Explanation

The correct answer is C because ensuring devices receive software updates and definitions minimizes vulnerabilities that can be exploited by malware. Options A and B do not directly address the virus issue, while option D may limit access but does not resolve the underlying problem of outdated software.