CompTIA Security+ SY0-701 Practice Question
An organization has decided to implement an application allow list policy to reduce the risk of malware infections on its network. Which of the following best describes the action the organization is taking?
Creating a list of authorized software that is allowed to run on company systems.
Allowing users to decide which software can be executed on their individual workstations.
Permitting all installed software to run but monitoring their behaviors for any suspicious activity.
Compiling a list of software that users believe should not be installed on their systems.