Which of the following is the BEST course of action to manage privacy risk when a significant vulnerability is identified in the operating system (OS) that supports an organization’s customer relationship management (CRM) system?
A.
Apply OS patching to fix the vulnerability immediately.
B.
Manage system permissions and access more strictly.
C.
Enable comprehensive logging of activities at the OS level.
D.
Perform a vulnerability assessment to determine the impact.
I would go with A on this one. Applying OS patching immediately is the most effective and direct action to manage privacy risk related to a significant vulnerability. Patching addresses the specific security flaw, thereby reducing the risk of exploitation and protecting sensitive customer data stored in the CRM system. Performing a vulnerability assessment to determine the impact is a good practice, but in the case of a significant vulnerability that has already been identified, immediate action (such as patching) is more critical to minimize risk.
Revising on above, D answer sounds better as while applying a patch is often necessary, an initial impact assessment (Option D) would be an excellent first step from a privacy standpoint. It helps ensure that the right actions are taken, particularly when balancing operational needs, privacy concerns, and regulatory obligations.
It's definitely not B. Initially, I wanted to say A - apply the patching, but D - Perform a vulnerability assessment to determine the impact makes the most sense since it will most likely result in an emergency change ticket to apply the OS patch, based on the severity.
upvoted 4 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
821bbab
2 months, 1 week ago821bbab
1 month, 3 weeks agojohnH123
11 months, 3 weeks ago