CompTIA CySA+ (CS0-001) — Question 237

A security analyst at a small regional bank has received an alert that nation states are attempting to infiltrate financial institutions via phishing campaigns. Which of the following techniques should the analyst recommend as a proactive measure to defend against this type of threat?

Answer options

• A. Honeypot
• B. Location-based NAC
• C. System isolation
• D. Mandatory access control
• E. Bastion host

Correct answer: B

Explanation

Location-based NAC (Network Access Control) can help ensure that only authorized devices are granted access to the network based on their physical location, making it a strong defense against phishing attempts. Other options like Honeypot and Bastion host are useful, but they do not specifically address the proactive prevention of phishing threats as effectively as location-based NAC does.