CompTIA Security+ (SY0-701) — Question 405

Which of the following is a compensating control for providing user access to a high-risk website?

Answer options

• A. Enabling threat prevention features on the firewall
• B. Configuring a SIEM tool to capture all web traffic
• C. Setting firewall rules to allow traffic from any port to that destination
• D. Blocking that website on the endpoint protection software

Correct answer: A

Explanation

The correct answer is A because enabling threat prevention features on the firewall can help detect and mitigate risks associated with accessing high-risk websites. Option B, while useful for monitoring, does not actively prevent threats; option C creates a security risk by allowing unrestricted traffic; and option D completely blocks access rather than providing controlled access with compensating controls.