CompTIA Security+ (SY0-501) — Question 453

An organization relies heavily on an application that has a high frequency of security updates. At present, the security team only updates the application on the first Monday of each month, even though the security updates are released as often as twice a week.
Which of the following would be the BEST method of updating this application?

Answer options

• A. Configure testing and automate patch management for the application.
• B. Configure security control testing for the application.
• C. Manually apply updates for the application when they are released.
• D. Configure a sandbox for testing patches before the scheduled monthly update.

Correct answer: A

Explanation

The best approach is to configure testing and automate patch management (Option A), as it allows for timely updates in response to frequent security releases. Option B, while beneficial, does not directly address the frequency of updates. Option C is inefficient and could leave the application vulnerable. Option D might delay necessary updates by requiring additional testing before each monthly schedule.