CompTIA Security+ (SY0-601) — Question 296

An organization wants to quickly assess how effectively the IT team hardened new laptops. Which of the following would be the best solution to perform this assessment?

Answer options

• A. Install a SIEM tool and properly configure it to read the OS configuration files
• B. Load current baselines into the existing vulnerability scanner
• C. Maintain a risk register with each security control marked as compliant or non-compliant
• D. Manually review the secure configuration guide checklists

Correct answer: B

Explanation

Loading current baselines into the existing vulnerability scanner allows for a comprehensive scan of the new laptops against established security standards, quickly identifying vulnerabilities. While the other options may contribute to security assessments, they either lack the efficiency of automated scanning or do not provide a direct measurement of compliance against baselines.