Certified Information Systems Security Professional (CISSP) — Question 259

A security practitioner detects an Endpoint attack on the organization's network. What is the MOST reasonable approach to mitigate future Endpoint attacks?

Answer options

• A. Remove all non-essential client-side web services from the network.
• B. Harden the client image before deployment.
• C. Screen for harmful exploits of client-side services before implementation.
• D. Block all client-side web exploits at the perimeter.

Correct answer: B

Explanation

The correct answer is B because hardening the client image before deployment reduces vulnerabilities and enhances security. Options A and D may help but do not address the root cause effectively, while option C is proactive but does not ensure that the deployed image is secure.