A security manager is creating a standard configuration across all endpoints that handle sensitive data. Which of the following techniques should be included in the standard configuration to ensure the endpoints are hardened?
Drive encryption is a critical security measure to protect sensitive data stored on endpoints (e.g., laptops, desktops, mobile devices). If an endpoint is lost or stolen, full disk encryption ensures that the data is protected from unauthorized access, even if someone gains physical access to the device. For endpoints that handle sensitive data, encryption prevents data leakage or exposure, ensuring that confidential information is kept secure, regardless of the device's status. NOT B. Patch management is also a critical component of endpoint hardening. It involves regularly applying security patches and updates to the operating system, applications, and software. While patch management addresses known vulnerabilities and reduces the risk of exploits, it does not directly protect sensitive data in the event of physical theft or unauthorized access to the system. Therefore, while essential, it’s not as specific to protecting the data itself as drive encryption.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Bright07
2 weeks, 3 days ago