CompTIA Security Plus Mock Test Q489

A company has two server administrators that work overnight to apply patches to minimize disruption to the company. With the limited working staff, a security engineer performs a risk assessment to ensure the protection controls are in place to monitor all assets including the administrators in case of an emergency. Which of the following should be in place?

A. NIDS
B. CCTV
C. Firewall
D. NIPS

Correct Answer: B
Section: Compliance and Operational Security

Explanation:
CCTV are an excellent way to deter unwanted activity and it records the occurrence of the event, in case it does happen. Cameras can be placed to watch points of entry, to monitor activities around valuable assets as well as provide additional protection in areas such as parking areas and walkways.

Incorrect Answers:
A: NIDS are meant to detect malicious activity that occurs within the network. This is not what is required in this case.
C: Firewall can be a hardware or software component that is designed to protect one network from another network. This is not the objective here.
D: NIPS is a reliable tool for detecting network-focused attacks, but is not what is required in this case.

References:
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 12, 127