CompTIA CySA+ (CS0-003) — Question 489

The Chief Information Security Officer is directing a new program to reduce attack surface risks and threats as part of a zero trust approach. The IT security team is required to come up with priorities for the program. Which of the following is the best priority based on common attack frameworks?

Answer options

• A. Reduce the administrator and privileged access accounts
• B. Employ a network-based IDS
• C. Conduct thorough incident response
• D. Enable SSO to enterprise applications

Correct answer: A

Explanation

Reducing administrator and privileged access accounts is critical in a zero trust framework as it limits potential entry points for attackers and minimizes risk. While employing a network-based IDS, conducting incident response, and enabling SSO are important, they do not directly address the fundamental principle of reducing privileges that make systems more vulnerable.