A company needs to ensure that their scheduled vulnerability scans do not impact their critical operations but also wants to maintain up-to-date security. What is the BEST approach to achieve this balance?
Schedule scans during low-traffic or maintenance windows.
Conduct external scans only to avoid affecting internal operations.
Perform segmentation of the network to reduce the impact on critical operations.
Use non-credentialed, passive scanning methods to minimize impact.