Which of the following actions could a security engineer take to ensure workstations and servers are properly monitored for unauthorized changes and software?
A.
Configure all systems to log scheduled tasks.
B.
Collect and monitor all traffic exiting the network.
C.
Block traffic based on known malicious signatures.
D.
Install endpoint management software on all systems.
Endpoint management software is a tool that allows security engineers to monitor and control the configuration, security, and performance of workstations and servers from a central console. Endpoint management software can help detect and prevent unauthorized changes and software installations, enforce policies and compliance, and provide reports and alerts on the status of the endpoints. The other options are not as effective or comprehensive as endpoint management software for this purpose. References: CompTIA Security+ Study Guide: Exam SY0-701, 9th Edition, page 137 1
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit