ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 287 discussion

Actual exam question from CompTIA's CS0-002
Question #: 287
Topic #: 1
[All CS0-002 Questions]

An organization is adopting IoT devices at an increasing rate and will need to account for firmware updates in its vulnerability management programs. Despite the number of devices being deployed, the organization has only focused on software patches so far, leaving hardware-related weaknesses open to compromise. Which of the following best practices will help the organization to track and deploy trusted firmware updates as part of its vulnerability management programs?

  • A. Utilize threat intelligence to guide risk evaluation activities and implement critical updates after proper testing.
  • B. Apply all firmware updates as soon as they are released to mitigate the risk of compromise.
  • C. Determine an annual patch cadence to ensure all patching occurs at the same time.
  • D. Implement an automated solution that detects when vendors release firmware updates and immediately deploy updates to production.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by gnnggnnggnng at Feb. 3, 2023, 11:25 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Stiobhan
Highly Voted 2 years, 2 months ago
Selected Answer: A
Definitely A, the rest have the potential to cause more issues not remediate them. Who rolls out patches/updates to production systems without proper testing? Glad I don't work with them!!!!
upvoted 5 times
2Fish
2 years, 1 month ago
Agreed... this is A for sure. It is not best practice to deploy updates without testing.
upvoted 1 times
...
...
kill_chain
Most Recent 1 year, 8 months ago
Duplicate question?
upvoted 2 times
...
CatoFong
2 years, 3 months ago
Selected Answer: A
agree with A.
upvoted 1 times
...
gnnggnnggnng
2 years, 3 months ago
Selected Answer: A
A is the best option because it provides a structured approach to evaluate the risk of deploying firmware updates to IoT devices. Utilizing threat intelligence to guide the risk evaluation activities helps the organization understand the potential impact of applying firmware updates and make informed decisions. Additionally, applying critical updates only after proper testing ensures that the updates do not cause unintended consequences or break the existing system. This approach balances the need to secure the devices while also minimizing the potential risks of applying updates.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago