A security assessor is working with an organization to review the policies and procedures associated with managing the organization’s virtual infrastructure. During a review of the virtual environment, the assessor determines the organization is using servers to provide more than one primary function, which violates a regulatory requirement. The assessor reviews hardening guides and determines policy allows for this configuration.

CAS-003 0 Comments

A security assessor is working with an organization to review the policies and procedures associated with managing the organization’s virtual infrastructure. During a review of the virtual environment, the assessor determines the organization is using servers to provide more than one primary function, which violates a regulatory requirement. The assessor reviews hardening guides and determines policy allows for this configuration.

It would be MOST appropriate for the assessor to advise the organization to:
A . segment dual-purpose systems on a hardened network segment with no external access
B . assess the risks associated with accepting non-compliance with regulatory requirements
C . update system implementation procedures to comply with regulations
D . review regulatory requirements and implement new policies on any newly provisioned servers

Answer: A

Latest CAS-003 Dumps Valid Version with 509 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download CAS-003 PDF     CAS-003 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments