CompTIA Cloud+ (CV0-003) — Question 319

A systems administrator needs to implement a security control that will prevent unknown malware from infecting a system in case the antivirus solution fails. Which of the following should the administrator implement?

Answer options

• A. A software whitelist
• B. File integrity monitoring
• C. A host-based IDS
• D. Hardened baselines

Correct answer: A

Explanation

A software whitelist is effective because it allows only approved applications to run, blocking any unauthorized software, including malware. The other options, such as file integrity monitoring, a host-based IDS, and hardened baselines, provide monitoring and protection but do not directly prevent unknown malware from executing if it bypasses the antivirus.