An organization seeks a solution to automate vulnerability assessments and ensure consistent security configurations across various systems and tools. Which of the following would BEST help achieve this goal?
Utilize a Configuration Management Database (CMDB)
Deploy an Endpoint Detection and Response solution
Implement the Security Content Automation Protocol (SCAP)
The Security Content Automation Protocol (SCAP) is a framework of standards that enables automated vulnerability management, measurement, and policy compliance evaluation. It provides a standardized approach for sharing security data across different tools, which helps automate assessments and maintain consistent security configurations.
A Configuration Management Database (CMDB) stores information about hardware and software assets within an organization but does not automate vulnerability assessments or enforce security configurations.
An Endpoint Detection and Response (EDR) solution focuses on real-time monitoring and response to threats on endpoint devices but doesn't provide a standardized method for automating vulnerability assessments across various systems and tools.
A Network Access Control (NAC) system enforces security policy compliance for devices attempting to access the network but doesn't automate assessments or manage configurations across all systems and tools.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.