This is another poorly worded CompTIA question.
We are looking for the 'MOST" effective person to (validate results.)
Answer C, is wrong. The CIO is an important person, however the CIO could care less about validating results.
Answer B, The Pentest 'Team Leader' would be very qualified. Numerous job functions assigned to this role even start with the words 'verifies' and 'validates.'
++++++++++++++++
CIO-IT Security-11-51, Revision 5
Conducting Penetration Test Exercises
4.1 Responsibilities
A Penetration Test is a coordinated effort between the ISSM/ISSO, Systems Owner and the
Penetration Testing team.
4.1.2 Pentest Lead
- Drafts Kick Off meeting slides and RoE
- Schedules Kick Off meeting
- Verifies the Penetration Test Type
- Validates the Scope
- Manages the Penetration Test schedule
- Assigns a Penetration tester
- Signs the RoE
- Circulates the RoE for signatures.
Source:
https://www.gsa.gov/cdnstatic/Conducting_Penetration_Test_Exercises_%5BCIO_IT_Security_11-51_Rev_5%5D_07-24-2020docx.pdf
Another poor question with little context.
If the Team Leader is the Pentesters Team Leader, then I feel they would be the best person to validate the results of a pentest, prior to presenting them to the Client or CIO.
B - Team Leader.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
ResStapler
Highly Voted 2 years, 3 months agoDavar39
Highly Voted 2 years, 11 months agoCharlieb123
Most Recent 2 years, 8 months agocarlo479
2 years, 8 months ago