An overseas branch office within a company has many more technical and non-technical security incidents than
other parts of the company. Which of the following management controls should be introduced to the branch
office to improve their state of security?
Initial baseline configuration snapshots
Firewall, IPS and network segmentation
Event log analysis and incident response
Continuous security monitoring processes
Continuous monitoring may involve regular measurements of network traffic levels, routine evaluations for
regulatory compliance, and checks of network security device configurations. It also points toward the neverending review of what resources a user actually accesses, which is critical for preventing insider threats.
A: An initial baseline configuration snapshot would allow for the standardized minimal level of security that all
systems in an organization must comply with to be enforced. This will not cover the non-technical security
B: A Firewall, IPS and network segmentation will offer technical protection, but not non-technical security
C: Event log analysis and incident response will not cover the non-technical security incidents.