Home » Certification Exams Questions » What is the first thing should be done to determine the correct controls?

A network security engineer is defining the controls needed to protect firewalls. What is the first thing they should do to determine the correct controls?

OPTIONS

  • Review existing firewall rules and controls to ensure that there has been no deterioration
  • Review the risk register to ensure that all risks are being managed
  • Contact the firewall vendor to identify commonly used controls for this technology
  • Identify the organization’s objectives that the controls need to support

ANSWER

Identify the organization’s objectives that the controls need to support

EXPLANATION

Automating controls or building them into technology relieves people of the effort of making the control work. Controls managed in this way should directly align with and support the achievement of high-level objectives.

Leave a Reply

Your email address will not be published. Required fields are marked *

*
*

Latest

You need someone on your team who will work across value streams and programs to help provide the strategic technical direction that can optimize portfolio outcomes. What portfolio-level must you fill?
Who is responsible for managing the Portfolio Kanban?
What portfolio-level role takes responsibility for coordinating portfolio Epics through the Portfolio Kanban system?
Which role accepts Capabilities as complete?
Who is responsible for the Solution Backlog?
Exit mobile version