Certified Information Systems Auditor (CISA) — Question 813

A firewall between internal network segments improves security and reduces risk by:

Answer options

• A. inspecting all traffic flowing between network segments and applying security policies.
• B. ensuring all connecting systems have appropriate security controls enabled.
• C. monitoring and reporting on sessions between network participants.
• D. logging all packets passing through network segments.

Correct answer: A

Explanation

The correct answer, A, emphasizes that a firewall actively inspects and manages traffic between segments, ensuring that security policies are enforced. Options B, C, and D do not directly address the proactive role of a firewall in traffic inspection and policy application, which are essential for improving security and reducing risk.