Certified Information Systems Security Professional (CISSP) — Question 204

An organization has experienced multiple distributed denial-of-service (DDoS) attacks in recent months that have impact of their public-facing web and e-commerce sites that were previously all on-premises. After an analysis of the problems, the network engineers have recommended that the organization implement additional name service providers and redundant network paths. What is another recommendation that helps ensure the future availability of their web and e-commerce sites?

Answer options

• A. Move all cloud-based operations back to on-premises to mitigate attacks.
• B. Move all websites to a new location.
• C. Review current detection strategies and employ signature-based techniques.
• D. Review the service-level agreements (SLA) with their cloud service providers.

Correct answer: D

Explanation

Reviewing the service-level agreements (SLA) with cloud service providers can ensure that the organization has adequate protections and guarantees in place against DDoS attacks. The other options, such as moving operations back on-premises or to a new location, do not address the root of the problem and could lead to further vulnerabilities. Additionally, while improving detection strategies is important, it does not directly enhance availability like a proper SLA would.