CompTIA CySA+ (CS0-001) — Question 201

An analyst is preparing for a technical security compliance check on all Apache servers. Which of the following will be the BEST to use?

Answer options

• A. CIS benchmark
• B. Nagios
• C. OWASP
• D. Untidy
• E. Cain & Abel

Correct answer: A

Explanation

The CIS benchmark provides a comprehensive set of best practices for securely configuring systems, including Apache servers, making it the most suitable choice for a compliance check. Other options like Nagios are monitoring tools, OWASP focuses on web application security, and Untidy and Cain & Abel are not relevant to compliance assessments.