An IS auditor finds that application servers had inconsistent security settings leading to potential vulnerabilities. Which of the following is the BEST recommendation by the IS auditor?
in principle in a first step it is necessary to review the security parameters and then improve the change management process, for me the right answer is B.
The issue is not that there has been problems with change management processes. The issue is that the current settings are not effective. The system settings should be reviewed to ensure that sufficient protections for this system be implemented. The answer should be B.
Option B proposes performing a configuration review. A configuration review involves identifying and documenting the current configuration of the application servers, comparing it to a known secure baseline, and identifying any deviations. This process can help identify vulnerabilities and provide guidance on how to remediate them. Therefore, option B is a valid recommendation and could be considered the BEST option.
As an IS auditor, the best recommendation to address the issue of inconsistent security settings on application servers would be to standardize and centralize the security configurations of these servers. This can be achieved through the use of security configuration management tools and/or policies and procedures that ensure all application servers are configured consistently and securely.
Additionally, the IS auditor could recommend implementing security monitoring and continuous audit processes to detect and remediate any future deviations from the standardized security configuration. Regular security assessments and penetration testing can also help identify and address potential vulnerabilities in a timely manner.
Overall, the goal should be to ensure that all application servers have consistent and secure security configurations, and that any deviations from the standard are quickly identified and remediated to reduce the risk of potential vulnerabilities.
Correct answer is A. improve the Change management process.
From CISA Q&A, Similar question, A4-81, There should be a complete change management process that includes testing, scheduling and approval.
wrong answer B. is only a detection control.
#correction#
B. is only a detection control, the answer is A. improve the Change management process.
This will ensure that the changes will authorized, tested, approved and reviewed.
I think it is A. Perform a configuration review of what? Obviously there is a Change Management process but it is not being followed. You can review the configuration of the server and fix the configuration but the issue will happen again unless the process is improved.
upvoted 3 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Moukhtarfarid
Highly Voted 2 years, 5 months agoGizmoduck
Highly Voted 2 years, 2 months ago3008
Most Recent 3 months, 3 weeks agozebree
7 months, 1 week agoA_Salem
1 year, 11 months agonwachinanulogu
2 years, 6 months agoA_Salem
1 year, 11 months agoA_Salem
1 year, 11 months agomarcopolo13
2 years, 8 months ago