ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 34 discussion

Actual exam question from CompTIA's CS0-002
Question #: 34
Topic #: 1
[All CS0-002 Questions]

In response to an audit finding, a company's Chief Information Officer (CIO) instructed the security department to increase the security posture of the vulnerability management program. Currently, the company's vulnerability management program has the following attributes:
✑ It is unauthenticated.
✑ It is at the minimum interval specified by the audit framework.
✑ It only scans well-known ports.
Which of the following would BEST increase the security posture of the vulnerability management program?

  • A. Expand the ports being scanned to include all ports. Increase the scan interval to a number the business will accept without causing service interruption. Enable authentication and perform credentialed scans.
  • B. Expand the ports being scanned to include all ports. Keep the scan interval at its current level. Enable authentication and perform credentialed scans.
  • C. Expand the ports being scanned to include all ports. Increase the scan interval to a number the business will accept without causing service interruption. Continue unauthenticated scanning.
  • D. Continue scanning the well-known ports. Increase the scan interval to a number the business will accept without causing service interruption. Enable authentication and perform credentialed scans.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Laudy at Sept. 6, 2022, 4:41 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Riwon
2 years, 4 months ago
B. The interval is the time lapse between the completion of the previous scan and the start of the next scan, so increase scan interval means "decrease the frequency of scans".
upvoted 1 times
2Fish
2 years, 3 months ago
I see what your saying, however, the question states "...business will accept without causing service interruption". I would think that "decreasing the scans" would not be a disruption to service. unless I have misinterpreted this whole thing.
upvoted 2 times
...
...
2Fish
2 years, 4 months ago
Selected Answer: A
A. This makes the most sense and currently they are at the "minimum" level. Does not mean we cannot improve the cadence.
upvoted 2 times
...
CyberNoob404
2 years, 6 months ago
Selected Answer: A
"A" makes sense for a real world scenario.
upvoted 2 times
...
Abyad
2 years, 8 months ago
Selected Answer: B
the question says:In response to an audit finding:It is at the minimum interval specified by the audit framework. so I gues you should keep the scan interval at its current level
upvoted 2 times
Big_Dre
1 year, 11 months ago
no the scans are at a minimum meaning when increased it still falls under the acceptable frame. so to increase security we should definitely increase the number of scans too.
upvoted 1 times
...
...
ryanzou
2 years, 9 months ago
Selected Answer: A
A is correct
upvoted 2 times
...
nonjabusiness
2 years, 10 months ago
Selected Answer: A
A credentialed scan takes more time but, is more thorough. This answer will not impact availability All ports should be scanned to catch any malicious high numbered ports
upvoted 1 times
...
amateurguy
2 years, 10 months ago
Selected Answer: A
A is right imo.
upvoted 1 times
...
Laudy
2 years, 10 months ago
Only A makes sense.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel