ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your organization is rolling out a configuration management program for 100 mixed-OS application servers hosted on-premises and in the cloud. Security policy mandates that every server be compared continuously with an approved baseline, any unauthorized deviation be reported automatically, and that successive baseline versions be preserved for audit. Which of the following solutions BEST satisfies these requirements while imposing minimal ongoing administrative effort?
Enable centralized log forwarding to a SIEM and create correlation rules to flag unusual events in operating system logs.
Have system administrators manually record every change in a spreadsheet that is reviewed during monthly configuration audits.
Perform weekly full-image backups to an off-site repository and redeploy any server whose configuration differs from the most recent image.
Implement a version-controlled configuration management database and deploy automated host agents that continuously compare each server's configuration to the stored baseline and alert on drift.
A configuration management database (CMDB) that stores version-controlled baseline definitions, combined with host-based agents that monitor system settings and files, directly addresses all stated needs. The CMDB supplies the authoritative baseline and retains historical versions for audit. Automated integrity-monitoring agents compare each server's current state to that baseline in real time and generate alerts when drift is detected, greatly reducing manual effort.
Weekly image restores meet recovery requirements but do not provide continuous detection or granular change tracking. Relying on administrators to update spreadsheets is labor-intensive and prone to human error. Centralized log analysis can reveal some anomalies but does not continuously compare detailed configuration items to a baseline or maintain version history of approved states.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a Configuration Management Database (CMDB)?
Open an interactive chat with Bash
How do automated host agents work in configuration management?
Open an interactive chat with Bash
What does 'configuration drift' mean, and why is it important to monitor?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .