7d โข ๐โโ๏ธ CISSP
CISSP Practice Question (Domain 3: Security Architecture and Engineering)
An architect proposes implementing end-to-end encryption for all internal microservice communications. The SOC team warns this will eliminate their ability to inspect east-west traffic for lateral movement detection. Both teams escalate to you. What is the BEST course of action?
A. Prioritize encryption and accept reduced network visibility as residual risk
B. Reject encryption to preserve the SOC's detection capabilities
C. Implement encryption with TLS termination points that allow authorized inspection
D. Defer the decision until a formal threat model evaluates both risks
Come back for the answer tomorrow, or study more now!
5
22 comments
CISSP Practice Question (Domain 3: Security Architecture and Engineering)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+29
2
+29
3
+28
4
+26
5
+16
Powered by