Multiple Choice
A deployment manager is working with a software development group to assess the security of a new version of the organization's internally developed ERP tool. The organization prefers to not perform assessment activities following deployment, instead focusing on assessing security throughout the life cycle. Which of the following methods would BEST assess the security of the product?
A) Static code analysis in the IDE environment
B) Penetration testing of the UAT environment
C) Vulnerability scanning of the production environment
D) Penetration testing of the production environment
E) Peer review prior to unit testing
Correct Answer:
Verified
Correct Answer:
Verified
Q188: Following a recent outage, a systems administrator
Q189: A company uses an enterprise desktop imaging
Q190: An international e-commerce company has identified attack
Q191: While attending a meeting with the human
Q192: A security analyst sees some suspicious entries
Q194: A medical device company is implementing a
Q195: A team is at the beginning stages
Q196: Several recent ransomware outbreaks at a company
Q197: The audit team was only provided the
Q198: A network administrator is concerned about a