Certified Information Systems Security Professional (CISSP) — Question 74

Which of the following vulnerability assessment activities BEST exemplifies the Examine method of assessment?

Answer options

• A. Asking the Information System Security Officer (ISSO) to describe the organization's patch management processes
• B. Ensuring that system audit logs capture all relevant data fields required by the security controls baseline
• C. Logging into a web server using the default administrator account and a default password
• D. Performing Port Scans of selected network hosts to enumerate active services

Correct answer: B

Explanation

The correct answer, B, is right because it involves verifying compliance with security standards, which is a key aspect of the Examine method. Option A focuses on asking for descriptions rather than verifying processes, C involves accessing a system in an insecure manner, and D is related to enumeration, not examination.