CompTIA CySA+ (CS0-002) — Question 384

A security analyst on the threat-hunting team has developed a list of unneeded, benign services that are currently running as part of the standard OS deployment for workstations. The analyst will provide this list to the operations team to create a policy that will automatically disable the services for all workstations in the organization. Which of the following BEST describes the security analyst's goal?

Answer options

• A. To create a system baseline
• B. To reduce the attack surface
• C. To optimize system performance
• D. To improve malware detection

Correct answer: B

Explanation

The correct answer is B, as the analyst aims to reduce the attack surface by disabling unnecessary services that could be exploited by attackers. Option A, creating a system baseline, is not the main goal here; instead, the analyst is focused on security. Option C, optimizing system performance, and option D, improving malware detection, are also not the primary objectives in this scenario.