CompTIA Security+ (SY0-501) — Question 971

A small company's Chief Executive Officer (CEO) has asked its Chief Security Officer (CSO) to improve the company's security posture quickly with regard to targeted attacks.
Which of the following should the CSO conduct FIRST?

Answer options

• A. Survey threat feeds from services inside the same industry.
• B. Purchase multiple threat feeds to ensure diversity and implement blocks for malicious traffic
• C. Conduct an internal audit against industry best practices to perform a qualitative analysis.
• D. Deploy a UTM solution that receives frequent updates from a trusted industry vendor.

Correct answer: A

Explanation

The correct answer is A because surveying threat feeds from the same industry provides immediate insights into relevant threats and vulnerabilities that the company may face. The other options, while beneficial, involve more time-consuming steps such as purchasing feeds, conducting audits, or deploying solutions that may not address immediate threats effectively.