It is MOST important to perform which of the following to minimize potential impact when implementing a new vulnerability scanning tool in a production environment?
A. Negotiate schedule with the Information Technology (IT) operation’s team
B. Log vulnerability summary reports to a secured server
C. Enable scanning during off-peak hours D. Establish access for Information Technology (IT) management
|
Download Printable PDF. VALID exam to help you PASS. |
 |
It is C
See CISSP CBK 5th edition, domain 6, page 549:
“Scanning should also initially be conducted during nonproduction times or during a scheduled maintenance window for the organisation”
“By communicating the plan, informing the appropriate parties, testing, and taking appropriate precautions, vulnerability scanning can be an invaluable resource for improving organizations’s overall security”
I believe the correct answer is C. You can’t negotiate a schedule; vulnerability scanning should always be done during non-business hours or off-peak hours, especially in a production environment, since vulnerability scanning can affect network bandwidth.
I agree with C.
Vulnerability scanning tools can have a number of effects, including frequent server reboots and service unavailability during the scan time.
Therefore, it is desirable to execute the scan in a time zone in which the frequency of use is as low as possible. (But it doesn’t work in systems where servers are turned off at night or during off-hours.)
There might be some critical activities taking place off-peak, therefore the vulnerability assessment schedule should always be agreed with the IT Operations team. You can’t pick a random off-peak period. The answer is A.