26d • 🙋♂️ CISSP
Today’s Session top Question
See if you can answer this question within 75 seconds
As a senior security analyst for a large corporate firm, you are tasked with designing a comprehensive security testing strategy. The organization has recently migrated several critical applications to a hybrid cloud environment. You need to ensure that security assessments are effectively conducted across both on-premise and cloud environments. The existing legacy applications are known to have multiple interdependencies and complex configurations. Considering the constraints of limited resources and the variety of application environments, how would you prioritize and structure the security assessment to ensure maximum coverage and risk mitigation?
A. Focus on conducting external black-box testing on the cloud environments first, due to higher exposure risks.
B. Implement a combination of white-box and static code analysis to address internal threats within legacy systems.
C. Prioritize dynamic testing and fuzz testing on both cloud and on-premise applications to uncover real-time vulnerabilities.
D. Schedule regular automated vulnerability scans for cloud systems while conducting manual penetration tests for on-premise applications.
5
10 comments
Today’s Session top Question
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+26
2
+22
3
+18
4
+17
5
+16
Powered by