Which of the following methods would BEST assess the security of the product?

A deployment manager is working with a software development group to assess the security of a new version of the organization’s internally developed ERP tool. The organization prefers to not perform assessment activities following deployment, instead focusing on assessing security throughout the life cycle.

Which of the following methods would BEST assess the security of the product?
A . Static code analysis in the IDE environment
B . Penetration testing of the UAT environment
C . Vulnerability scanning of the production environment
D . Penetration testing of the production environment
E . Peer review prior to unit testing

Answer: C

Latest CAS-003 Dumps Valid Version with 509 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>