Acompany must build and deploy security standards for all servers in its on-premises and cloud environments based on hardening guidelines. Which of the following solutions most likely meets the requirements?
A.
Develop a security baseline to integrate with the vulnerability scanning platform to alert about any server not aligned with the new security standards.
B.
Create baseline images for each OS in use, following security standards, and integrate the images into the patching and deployment solution.
C.
Build all new images from scratch, installing only needed applications and modules in accordance with the new security standards.
D.
Run a script during server deployment to remove all the unnecessary applications as part of provisioning.
Creatingsecure baseline imagesensuresconsistent, repeatabledeployment aligned with hardening standards. These images can be used acrosson-premises and cloud environments, ensuring compliance and reducing misconfigurations.
Vulnerability alerts (A)are reactive, not preventive.
Building images from scratch (C)is time-consuming and unnecessary if baselines exist.
Scripts for cleanup (D)are useful but do not prevent initial insecure configurations.
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit