1d • 🙋♂️ CISSP
CISSP Practice Question (Domain 3: Security Architecture and Engineering - AI Exam Guidance)
Your organization is deploying a customer-facing chatbot powered by a third-party LLM. The product team wants to connect it directly to the order management database to answer real-time inventory questions. As the security architect, what is the BEST design control?
A. Implement input validation to block prompt injection attempts
B. Place an API gateway with strict allow-listed queries between the LLM and the database
C. Require TLS 1.3 for all traffic between the chatbot and backend systems
D. Deploy a WAF tuned for LLM-specific attack signatures
Come back for the answer tomorrow, or study more now!
2
17 comments
CISSP Practice Question (Domain 3: Security Architecture and Engineering - AI Exam Guidance)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+46
2
+37
3
+22
4
+21
5
+15
Powered by