CompTIA Cloud+ (CV0-002) — Question 98

Cloud developers are experiencing a delay caused by the static code review before each deployment. The security operator and developer must address the issue without cutting corners with security testing. Which of the following would BEST address the delay issue?

Answer options

• A. Replace the static code analysis with hardening techniques.
• B. Perform the static code analysis earlier in the SDLC.
• C. Perform a penetration test instead of a static code analysis.
• D. Replace the static code analysis with a vulnerability analysis.

Correct answer: A

Explanation

Option A is correct because hardening techniques can streamline the process while ensuring security measures are still in place. The other options do not effectively reduce the delay or may compromise security; for instance, performing static code analysis earlier (B) may not address the core issue of delay, while penetration testing (C) and vulnerability analysis (D) serve different purposes than static code analysis.