Certified Information Systems Security Professional (CISSP) — Question 333
The Chief Information Security Officer (CISO) is concerned about business application availability. The organization was recently subject to a ransomware attack that resulted in the unavailability of applications and services for 10 working days that required paper-based running of all main business processes. There are now aggressive plans to enhance the Recovery Time Objective (RTO) and cater for more frequent data captures. Which of the following solutions should be implemented to fully comply to the new business requirements?
Answer options
- A. Virtualization
- B. Antivirus
- C. Host-based intrusion prevention system (HIPS)
- D. Process isolation
Correct answer: A
Explanation
Virtualization allows for quicker recovery and easier management of application availability, making it the best choice for improving RTO. Antivirus solutions primarily focus on malware prevention and do not address application availability directly. Host-based intrusion prevention systems (HIPS) enhance security but do not improve recovery times. Process isolation helps in security but does not contribute to application availability or RTO enhancements.