ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
During a weekly vulnerability scan of 500 Amazon EC2 instances, the security team receives more than 3,000 findings. Only two days are available in the upcoming maintenance window for remediation. According to industry-accepted vulnerability management practices, which approach will best prioritize the fixes so the team addresses the most significant risks first?
Apply fixes in the exact order the scanner reported them to keep the report sequence intact.
Rank findings by CVSS base score and the criticality of the affected asset, remediating high-severity issues on Internet-facing production systems first.
Install all vendor-supplied patches and defer any issues that require configuration changes to the next maintenance cycle.
Patch every vulnerability on development instances before touching production so updates can be tested safely.
Best practice for the Prioritization/Analysis phase is to combine a technical severity rating such as the CVSS base score with the business importance and exposure of the affected asset. High-severity vulnerabilities that affect Internet-facing or mission-critical production systems are most likely to be exploited and to cause serious impact, so they should be remediated first. Simply following scanner order, focusing on development systems, or patching only issues with available fixes may leave higher-risk exposures unaddressed and does not align with risk-based prioritization guidance from NIST SP 800-40 and the CVSS specification.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the CVSS base score?
Open an interactive chat with Bash
Why prioritize Internet-facing production systems?
Open an interactive chat with Bash
What is NIST SP 800-40 and how does it guide vulnerability management?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Risk Identification, Monitoring and Analysis
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .