Free CompTIA CySA+ CS0-003 Practice Question
A company's policy dictates that critical security patches should be applied within 72 hours of release. However, the latest patch for a critical vulnerability causes compatibility issues with a business-critical application. As a result, the patch cannot be immediately deployed. In the interim, which compensating control should the cybersecurity analyst recommend for inclusion in the vulnerability management report to mitigate the risk?
Enforce a temporary policy to change all users' passwords to a more complex set that exceeds current standard requirements.
Implement increased log monitoring on affected systems to detect any anomaly or intrusion attempt.
Conduct an immediate training session for users on phishing prevention and safe internet browsing habits.
Adjust network configurations to isolate the affected systems into a separate, restricted network zone.
