Your company has decided that the risk of performing a penetration test Is too great. You would like to figure out other ways to find vulnerabilities on their systems, which of the following is MOST likely to be a valid alternative?
Your company has decided that the risk of performing a penetration test Is too great. You would like to figure out other ways to find vulnerabilities on their systems, which of the following is MOST likely to be a valid alternative?
Configuration Reviews are likely to be the most valid alternative to performing a penetration test for finding vulnerabilities in systems. This involves examining the configurations of systems and devices to ensure they follow security best practices and are not susceptible to known vulnerabilities. Other options like Network Scope Analysis, Baseline Data Reviews, and Patch Policy Review do not directly address finding vulnerabilities in the same comprehensive way as Configuration Reviews.
should be D