CompTIA CySA+ (CS0-002) — Question 380

A security administrator needs to provide access from partners to an isolated laboratory network inside an organization that meets the following requirements:
* The partners' PCs must not connect directly to the laboratory network
* The tools the partners need to access while on the laboratory network must be available to all partners
* The partners must be able to run analyses on the laboratory network, which may take hours to complete
Which of the following capabilities will MOST likely meet the security objectives of the request?

Answer options

• A. Deployment of a jump box to allow access to the laboratory network and use of VDI in persistent mode to provide the necessary tools for analysis
• B. Deployment of a firewall to allow access to the laboratory network and use of VDI in non-persistent mode to provide the necessary tools for analysis
• C. Deployment of a firewall to allow access to the laboratory network and use of VDI in persistent mode to provide the necessary tools for analysis
• D. Deployment of a jump box to allow access to the laboratory network and use of VDI in non-persistent mode to provide the necessary tools for analysis

Correct answer: A

Explanation

The correct answer is A because a jump box provides secure access to the isolated laboratory network without direct connections from the partners' PCs, and using VDI in persistent mode allows partners to retain their analysis tools over extended sessions. The other options either use non-persistent VDI, which does not meet the requirement for long analyses, or rely on firewall configurations that do not adequately isolate partner access from the laboratory network.