Certified Information Security Manager (CISM) — Question 841
Which of the following is the BEST defense-in-depth implementation for protecting high value assets or for handling environments that have trust concerns?
Answer options
- A. Continuous monitoring
- B. Compartmentalization
- C. Multi-factor authentication
- D. Overlapping redundancy
Correct answer: B
Explanation
Compartmentalization is the best choice as it involves dividing resources into separate segments to minimize the risk of unauthorized access and limit exposure in case of a breach. Continuous monitoring, multi-factor authentication, and overlapping redundancy are important security measures, but they do not provide the same level of isolation and protection for high-value assets as compartmentalization does.