CompTIA CySA+ (CS0-003) — Question 518

A company is implementing a vulnerability management program and moving from an on-premises environment to a hybrid IaaS cloud environment. Which of the following implications should be considered on the new hybrid environment?

Answer options

• A. The current scanners should be migrated to the cloud
• B. Cloud-specific misconfigurations may not be detected by the current scanners
• C. Existing vulnerability scanners cannot scan IaaS systems
• D. Vulnerability scans on cloud environments should be performed from the cloud

Correct answer: B

Explanation

The correct answer is B because existing scanners may not be designed to identify vulnerabilities unique to cloud configurations. Option A is incorrect as migration doesn't guarantee effective scanning in the cloud. Option C is false because many scanners can assess IaaS systems, and option D, while stating an important practice, does not address the limitations of the current scanners.