ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question
A risk assessment of a new cloud-based telemedicine portal shows four key risks: (1) credential theft that exposes electronic protected health information (ePHI) is rated high likelihood and high impact; (2) SQL injection against the patient database is medium likelihood and high impact; (3) abuse of unauthenticated API endpoints is medium likelihood and high impact; (4) the absence of centralized security monitoring is high likelihood and medium impact. Funding allows deployment of only one new security control in the next sprint. Which control should be implemented first to reduce overall risk most effectively?
Deploy a web application firewall with rate-limiting rules on the public API endpoints.
Aggregate application and infrastructure logs into a centralized SIEM for real-time monitoring.
Enforce multifactor authentication for every user of the telemedicine portal.
Implement parameterized queries and strict input validation for all database operations.
The credential-theft scenario carries both the highest likelihood and the highest impact, giving it the greatest overall risk score. Enforcing multifactor authentication (MFA) directly lowers the probability that stolen or guessed credentials will let attackers reach ePHI, making it the most effective single control to deploy first. Parameterized queries, a web application firewall, and centralized SIEM logging address other important but lower-priority risks (medium-high or high-medium); they do not mitigate the top high-high threat as directly as MFA does.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does multifactor authentication (MFA) mean?
Open an interactive chat with Bash
Why is credential theft rated as high likelihood and high impact?
Open an interactive chat with Bash
How do parameterized queries help prevent SQL injection attacks?
Open an interactive chat with Bash
Why is multifactor authentication (MFA) considered the most effective control for mitigating credential theft?
Open an interactive chat with Bash
What are parameterized queries, and how do they mitigate SQL injection risks?
Open an interactive chat with Bash
What is a SIEM solution, and how does centralized monitoring help with system security?
Open an interactive chat with Bash
ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Architecture and Design
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .