A security administrator is creating a secure baseline for all new company workstations to minimize the attack surface. To provide the most effective and fundamental protection against known exploits as a first step, which of the following hardening techniques should be prioritized?
Applying security patches
Deploying a host-based intrusion detection system (HIDS)
Applying security patches is the highest priority because it directly remediates known vulnerabilities in the operating system and applications that attackers actively exploit. While full-disk encryption protects data at rest, HIDS is a detection tool, and a new antivirus is important, none are as fundamental as patching existing security holes to prevent an initial compromise.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why are security patches important for workstation security?
Open an interactive chat with Bash
What is the difference between a security patch and a software update?
Open an interactive chat with Bash
How can an organization ensure timely application of security patches?