CompTIA Security+ (SY0-501) — Question 645

A security consultant was asked to revise the security baselines that are utilized by a large organization. Although the company provides different platforms for its staff, including desktops, laptops, and mobile devices, the applications do not vary by platform. Which of the following should the consultant recommend? (Choose two.)

Answer options

• A. Apply patch management on a daily basis.
• B. Allow full functionality for all applications that are accessed remotely.
• C. Apply default configurations of all operating systems.
• D. Apply application whitelisting.
• E. Disable default accounts and/or passwords.

Correct answer: D, E

Explanation

The correct answers are D and E because application whitelisting ensures that only approved applications can run, enhancing security, while disabling default accounts and passwords prevents unauthorized access. Options A, B, and C do not directly address the critical security measures needed in this scenario.