CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

A cybersecurity analyst is tasked with enhancing the security defenses of an on-premises data center. While reviewing the network design documents, the analyst notices several legacy systems that rely on communication with external partners. Given that all external connections must pass stringent security requirements, which of the following solutions is BEST suited for securely managing these connections?

  • Creating separate Virtual Local Area Networks (VLANs) for each type of legacy system to minimize potential lateral movement.

  • Implementing a Data Loss Prevention (DLP) solution that prevents sensitive information from being transmitted to external networks.

  • Setting up a Demilitarized Zone (DMZ) that isolates the legacy systems while allowing secure communication with external partners.

  • Deploying a Network Access Control (NAC) system that restricts legacy system communications based on policy compliance.

This question's topic:
CompTIA CySA+ CS0-003 / 
Security Operations
Your Score:
Security Operations
Vulnerability Management
Incident Response and Management
Reporting and Communication