Multiple Choice
Due to a recent acquisition, the security team must find a way to secure several legacy applications. During a review of the applications, the following issues are documented: The applications are considered mission-critical. The applications are written in code languages not currently supported by the development staff. Security updates and patches will not be made available for the applications. Username and passwords do not meet corporate standards. The data contained within the applications includes both PII and PHI. The applications communicate using TLS 1.0. Only internal users access the applications. Which of the following should be utilized to reduce the risk associated with these applications and their current architecture?
A) Update the company policies to reflect the current state of the applications so they are not out of compliance.
B) Create a group policy to enforce password complexity and username requirements.
C) Use network segmentation to isolate the applications and control access.
D) Move the applications to virtual servers that meet the password and account standards.
Correct Answer:
Verified
Correct Answer:
Verified
Q315: To prepare for an upcoming audit, the
Q316: Which of the following are the MOST
Q317: A security architect is reviewing the code
Q318: Developers are working on a new feature
Q319: A security architect is implementing security measures
Q321: A security engineer is performing an assessment
Q322: A company is developing requirements for a
Q323: A managed service provider is designing a
Q324: A security manager is determining the best
Q325: A security administrator receives reports that several