Aug 24 • 🙋♂️ CISSP
CISSP Practice Question (Communication and Network Security - Hard):
A large financial institution has recently suffered a breach due to inadequate network monitoring. As a CISSP professional, you have been tasked with designing a comprehensive network monitoring strategy to detect and respond to potential threats in real-time. The institution's network is complex, with multiple branches worldwide, using a mix of cloud and on-premises services. It is crucial to have visibility into encrypted traffic without compromising data integrity or performance. Which approach should be implemented to achieve these objectives effectively?
Options:
A. Deploy a network-based intrusion detection system (NIDS) capable of decrypting SSL/TLS traffic for analysis.
B. Implement Secure Sockets Layer (SSL) bridging at the firewall to decrypt and inspect traffic, then re-encrypt before forwarding.
C. Utilize endpoint-based monitoring tools that can decrypt traffic locally for analysis before it enters the network.
D. Adopt an advanced network traffic analytics platform that leverages machine learning to identify anomalies in encrypted traffic without decryption.
4
12 comments
CISSP Practice Question (Communication and Network Security - Hard):
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+17
3
+14
4
+14
5
+11
Powered by