CompTIA Security+ (SY0-701) — Question 72

A security practitioner completes a vulnerability assessment on a company’s network and finds several vulnerabilities, which the operations team remediates. Which of the following should be done next?

Answer options

• A. Conduct an audit.
• B. Initiate a penetration test.
• C. Rescan the network.
• D. Submit a report.

Correct answer: C

Explanation

The correct next step is to rescan the network to verify that the vulnerabilities have been effectively remediated. Conducting an audit or initiating a penetration test may be premature since the focus should first be on ensuring that the previous vulnerabilities are resolved. Submitting a report is important but typically occurs after validation of the remediation efforts.