CompTIA CySA+ (CS0-003) — Question 429

Which of the following best describes the process of requiring remediation of a known threat within a given time frame?

Answer options

• A. SLA
• B. MOU
• C. Best-effort patching
• D. Organizational governance

Correct answer: A

Explanation

The correct answer is SLA (Service Level Agreement), which establishes the expectations for response times to known threats. MOU (Memorandum of Understanding) does not impose time constraints, while best-effort patching refers to non-binding attempts to fix issues. Organizational governance is broader and includes overall policy and compliance management but does not specifically address time-bound remediation.