A security assessor is working with an organization to review the policies and procedures associated with managing the organization's virtual infrastructure. During a review of the virtual environment, the assessor determines the organization is using servers to provide more than one primary function, which violates a regulatory requirement. The assessor reviews hardening guides and determines policy allows for this configuration. It would be MOST appropriate for the assessor to advise the organization to:
A) segment dual-purpose systems on a hardened network segment with no external access
B) assess the risks associated with accepting non-compliance with regulatory requirements
C) update system implementation procedures to comply with regulations
D) review regulatory requirements and implement new policies on any newly provisioned servers
Correct Answer:
Verified
Q218: A Chief Information Security Officer (CISO) is
Q219: A recent overview of the network's security
Q220: An organization is currently performing a market
Q221: An organization is reviewing endpoint security solutions.
Q222: Ann, a corporate executive, has been the
Q224: First responders, who are part of a
Q225: The Chief Information Security Officer (CISO) of
Q226: Staff members are reporting an unusual number
Q227: A vulnerability was recently announced that allows
Q228: A Chief Information Security Officer (CISO) of
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents