Examice

Exam GPEN All QuestionsBrowse all questions from this exam

Question 8

A client with 7200 employees in 14 cities (all connected via high speed WAN connections) has suffered a major external security breach via a desktop which cost them more than SI 72.000 and the loss of a high profile client. They ask you to perform a desktop vulnerability assessment to identify everything that needs to be patched. Using Nessus you find tens of thousands of vulnerabilities that need to be patched. In the report you find workstations running several Windows OS versions and service pack levels, anti-virus software from multiple vendors several major browser versions and different versions of Acrobat Reader. Which of the following recommendations should you provide with the report?

The client should standardize their desktop software

The client should eliminate workstations to reduce workload

The client should hire more people to catch up on patches

The client should perform monthly vulnerability assessments

Correct Answer: A

The client should standardize their desktop software. By standardizing, the organization can significantly reduce the complexity and variety of software that needs to be managed and patched. This approach leads to more efficient and consistent patch management processes, reducing vulnerabilities and potential points of entry for security breaches. It helps in creating a uniform security policy and makes vulnerability assessments and management easier and more effective in the long run.

Discussion

devnullOption: A

I think A is appropriate. Both A and C are costly and time-consuming, but once standardization is achieved, future patch management costs can be controlled. On the other hand, a strategy that relies on the number of people will continue to be costly.