Exam CCSP topic 1 question 460 discussion

Answer C is correct try whittle the other ones away you will see defo not D so A, B or C B incorrect an attacker doenst care so left with A or C A is a distractor c is left

An unskilled internal actor is a threat Perimeter security is defense vs external threat

Countermeasures for internal threats focus on personnel security, training, and monitoring to prevent malicious or accidental insider threats. While hardened perimeter devices (e.g., firewalls, intrusion prevention systems) are crucial for external security, they do not specifically address internal threats. 🔹 Effective Internal Threat Countermeasures: A. Extensive and comprehensive training programs → Educates employees on security best practices and how to avoid insider threats. B. Skills and knowledge testing → Ensures employees understand security policies and can apply them correctly. D. Aggressive background checks → Helps identify potentially risky employees before hiring. 🔹 Why Not "Hardened Perimeter Devices"? Perimeter security is designed to block external attackers, not to monitor or prevent insider threats. Insider threats often bypass perimeter security because they originate from within the organization.

It's C. The context is EXTERNAL attack. Hardened perimeter devices are primarily a countermeasure against external threats, not internal threats. Internal threats require measures that focus on personnel, access controls, and monitoring of insider activity. The others are all internal measures.

C is the best answer

I personally don't agree to C, because in large enterprises you may have several internal network zones which some of these may have a perimeter control. So from my perspective B makes no sense and is not a formal control.

answer not true, most attck come from internal staff.When we use a lapotop we don't access with admin account.