5d • 🙋♂️ CISSP
CISSP Practice Question – Security Assessment & Testing
A company’s security team is planning regular vulnerability assessments of its production systems. Management insists that business operations must not be disrupted during these tests.
Which of the following approaches BEST meets this requirement?
A. Run authenticated vulnerability scans against production systems during business hours.
B. Conduct penetration tests against production systems once per quarter.
C. Perform vulnerability scans in a staging environment that mirrors production.
D. Schedule uncredentialed vulnerability scans of production systems during off-peak hours.
4
20 comments
CISSP Practice Question – Security Assessment & Testing
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+17
3
+14
4
+14
5
+11
Powered by