اختبار شهادة امن المعلومات CompTIA Security+

السؤال 920 من 1022

كل الأسئلة

تنبيه مهم

هذه الصفحة مخصصة للأرشفة وظهور السؤال في نتائج البحث فقط، وليست التجربة الفعلية للاختبار.

A security engineer must deploy a sensor to actively monitor a closed network. The company's enterprise SIEM is located in the cloud, and there is a strict policy against connecting this network to the internet. Which of the following will best address these requirements?

A Place the sensor on the edge router of the closed network, open port 22 on the management interface, and create a secure connection to the cloud SIEM while using an implicit deny rule to restrict traffic.
B Connect the sensor to the closed network router's SPAN port, install a one-way data diode, and pass traffic to the sensor on the enterprise network for inclusion in the enterprise log data
C Install a log server on the closed network, point all network and system logs to the log server, and perform weekly manual audits of the logs to meet regulatory compliance objectives.
D Install the sensor on the internal closed network, add a firewall to the sensor stack, and connect the firewall to the corporate ISP while using strict ACLs to prevent egress traffic.

السؤال السابق

السؤال التالي

لا توجد نقاشات منشورة لهذا السؤال حالياً.