An overseas branch office within a company has many more technical and non-technical security
incidents than other parts of the company. Which of the following management controls should be
introduced to the branch office to improve their state of security?

A.
Initial baseline configuration snapshots

B.
Firewall, IPS and network segmentation

C.
Event log analysis and incident response

D.
Continuous security monitoring processes

Explanation:
Continuous monitoring may involve regular measurements of network traffic levels, routine
evaluations for regulatory compliance, and checks of network security device configurations. It
also points toward the never-ending review of what resources a user actually accesses, which is
critical for preventing insider threats.

Incorrect Options:
A: An initial baseline configuration snapshot would allow for the standardized minimal level of
security that all systems in an organization must comply with to be enforced. This will not cover the
non-technical security incidents.
B: A Firewall, IPS and network segmentation will offer technical protection, but not non-technical
security protection.
C: Event log analysis and incident response will not cover the non-technical security incidents.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex,
Indianapolis, 2014, p. 154.
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 207,
208