CompTIA Security+ (SY0-601) — Question 784

Which of the following BEST reduces the security risks introduced when running systems that have expired vendor support and lack an immediate replacement?

Answer options

• A. Implement proper network access restrictions.
• B. Initiate a bug bounty program.
• C. Classify the system as shadow IT.
• D. Increase the frequency of vulnerability scans.

Correct answer: A

Explanation

Implementing proper network access restrictions is the most effective measure as it limits exposure to threats and unauthorized access. While initiating a bug bounty program, classifying the system as shadow IT, and increasing vulnerability scans can contribute to security, they do not directly address the risk of running unsupported systems as effectively as access restrictions do.