Compensating controls provide alternative measures to mitigate risk when the primary control is not feasible. If the legacy server cannot be patched or upgraded, segmenting it into a private network acts as a compensating control by restricting access and reducing the risk posed by its vulnerabilities.
Segmentation of a critical legacy server into a private network is a compensating control because it addresses security risks when the legacy system cannot be updated or secured using standard measures, like patches or modern preventive controls.
D. Preventive
Preventive controls are designed to stop or mitigate unwanted actions or events before they happen. By segmenting a critical legacy server into a private network, the organization is aiming to prevent unauthorized access and potential threats, thus isolating the server from the broader network and reducing the risk of compromise.
The correct answer is C. Compensating.
When a critical legacy server is segmented into a private network, the security control being used is likely **compensating**. This is because the legacy server may not support modern security features, and network segmentation is implemented as a workaround to mitigate risks and protect it from external threats. A compensating control is used to achieve a level of security equivalent to the one required when it is not possible to implement the primary control.
The other options:
- A. Deterrent is designed to discourage malicious actions, such as warning signs or legal warnings.
- B. Corrective is aimed at fixing issues after an incident has occurred.
- D. Preventive is used to stop attacks from happening in the first place, but in this case, segmentation is compensating for the server's inherent vulnerabilities.
Thus, network segmentation is a "compensating" control.
The most likely security control being used when a critical legacy server is segmented into a private network is:
C. Compensating
A compensating control is implemented when the primary control (such as patching or updating a legacy server) is not feasible. Segmenting the legacy server into a private network is a compensating control because it mitigates risk by limiting the server's exposure without requiring changes to the server itself, which might not be possible due to its legacy status.
Segmenting a critical legacy server into a private network is a preventive security control. It helps to protect the server from unauthorized access and potential attacks by isolating it from the rest of the network, thereby reducing the risk of security breaches. Preventive controls are designed to stop security incidents before they occur.
compensating, because the best preventative action is to remove the server altogether. You are mitigating the risk by segmenting a vulnerable legacy server.
Agree to D. Preventive
Segmenting a critical legacy server into a private network is a preventive measure designed to reduce the risk of unauthorized access and protect sensitive data by controlling traffic to and from the server.
This section is not available anymore. Please use the main Exam Page.SY0-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
RoRoRoYourBoat
Highly Voted 8 months, 2 weeks agoBurnboy
Most Recent 6 days, 9 hours agoEngAbood
2 months agofc040c7
2 months, 3 weeks agoesko636
3 months, 1 week agod06e2b4
4 months, 2 weeks ago5787808
4 months, 3 weeks agoviktorrdlyi
4 months, 4 weeks agofc040c7
2 months, 3 weeks agofmeox567
4 months, 4 weeks agofamuza77
6 months, 1 week agoBluezClues
6 months, 3 weeks agogoku5786
6 months, 3 weeks agonillie
6 months, 3 weeks agoa0bfa81
7 months agojsmthy
7 months agochasingsummer
7 months, 1 week agokoala_lay
7 months, 1 week ago