CompTIA CySA+ (CS0-003) — Question 49

A recent vulnerability scan resulted in an abnormally large number of critical and high findings that require patching. The SLA requires that the findings be remediated within a specific amount of time. Which of the following is the best approach to ensure all vulnerabilities are patched in accordance with the SLA?

Answer options

• A. Integrate an IT service delivery ticketing system to track remediation and closure
• B. Create a compensating control item until the system can be fully patched
• C. Accept the risk and decommission current assets as end of life
• D. Request an exception and manually patch each system

Correct answer: A

Explanation

The best approach is to integrate an IT service delivery ticketing system to track remediation and closure, which ensures accountability and a structured process for addressing vulnerabilities within the SLA. Creating compensating controls may delay resolution, accepting risk compromises security, and manually patching each system is inefficient and could lead to oversights.