CompTIA CySA+ CS0-003 Practice Question
A security patch has been released to address a critical vulnerability in a key enterprise application. Applying the patch, however, is known to significantly reduce the performance of a module critical to user operations. What should a Cybersecurity Analyst recommend to manage the vulnerability effectively without unacceptable disruption to business activities?
Create compensating controls specific to the use of the application while the vendor works on an optimized patch.
Maintain regular operations without applying the patch, accepting the risk due to business necessity.
Defer the patch deployment until there is evidence of active exploitation in the wild targeting this vulnerability.
Divert resources from other projects to expedite the development of a custom patch.
Apply the patch immediately as system security takes precedence over performance concerns.
Rewrite the affected module of the application in-house to avoid the performance downgrade.