An administrator is auditing laptops against the organization's security baseline. The baseline requires that critical operating-system updates be installed within 14 days of release. Which of the following findings would cause a laptop to be flagged as non-compliant?
The most recent Windows security update (released three weeks ago) is still not installed.
Passwords must be at least 14 characters and include three character classes.
BitLocker full-disk encryption is enabled with XTS-AES 128-bit.
The local firewall blocks unsolicited inbound connections by default.
A notebook that has not installed a critical cumulative security update released three weeks earlier violates the baseline's 14-day patch window and is therefore non-compliant. The other findings describe controls (full-disk encryption, an enabled firewall, and a strong password policy) that meet or exceed common security requirements and would not make the system non-compliant.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are critical updates and why are they important?
Open an interactive chat with Bash
What are the risks of using a non-compliant system?