CompTIA CySA+ CS0-003 Practice Question

A cybersecurity analyst is tasked with enhancing the security defenses of an on-premises data center. While reviewing the network design documents, the analyst notices several legacy systems that rely on communication with external partners. Given that all external connections must pass stringent security requirements, which of the following solutions is BEST suited for securely managing these connections?

  • Implementing a Data Loss Prevention (DLP) solution that prevents sensitive information from being transmitted to external networks.

  • Creating separate Virtual Local Area Networks (VLANs) for each type of legacy system to minimize potential lateral movement.

  • Setting up a Demilitarized Zone (DMZ) that isolates the legacy systems while allowing secure communication with external partners.

  • Deploying a Network Access Control (NAC) system that restricts legacy system communications based on policy compliance.

CompTIA CySA+ CS0-003
Security Operations
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Bash, the Crucial Exams Chat Bot
AI Bot