VMware vSphere 8.x Advanced Design (VCAP-DCV Design) — Question 2

Following a review of security requirements, an architect has confirmed the following requirements:
REQ001- A clustered firewall solution must be placed at the perimeter of the hosting platform, and all ingress and egress network traffic will route via this device.
REQ002- A distributed firewall solution must secure traffic for all virtualized workloads.
REQ003- All virtualized workload, hypervisor, firewall and any management component system events must be monitored by security administrators.
REQ004- The hosting platforms security information and event management (SIEM) system must be scalable to 20,000 events per second.
REQ005- The hosting platforms storage must be configured with data-at-rest encryption.
REQ006- The hosting platform limits access to authorized users.
Which three requirements would be classified as technical (formerly non-functional) requirements? (Choose three.)

Answer options

• A. A clustered firewall solution must be placed at the perimeter of the hosting platform, and all ingress and egress network traffic will route via this device.
• B. A distributed firewall solution must secure traffic for all virtualized workloads.
• C. The hosting platforms security information and event management (SIEM) system must be scalable to 20,000 events per second.
• D. The hosting platforms storage must be configured with data-at-rest encryption.
• E. The hosting platform limits access to authorized users.
• F. All virtualized workload, hypervisor, firewall and any management component system events must be monitored by security administrators.

Correct answer: C, D, E

Explanation

The correct answers, C, D, and E, are considered technical requirements because they specify measurable attributes of the system, such as scalability, encryption, and access control. In contrast, options A, B, and F are more about the functional aspects of the firewalls and monitoring processes rather than the system's performance or security capabilities.