21h • 🙋♂️ CISSP
CISSP Practice Question (Domain 4: Communication and Network Security / Trust Boundaries & Attribution)
A global enterprise uses shared network infrastructure to support multiple business units with different regulatory obligations. During an investigation, encrypted internal traffic prevents determining which unit originated a noncompliant data transfer. Network design intentionally avoided segmentation to preserve agility.
What is the MOST appropriate architectural control to introduce FIRST?
A. Decrypt internal traffic at centralized inspection points
B. Implement logical network zoning aligned to business and regulatory boundaries
C. Increase application level logging to compensate for network opacity
D. Require all business units to use separate encryption keys
Come back for the answer tomorrow, or study more now!
1
16 comments
CISSP Practice Question (Domain 4: Communication and Network Security / Trust Boundaries & Attribution)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+68
2
+63
3
+45
4
+40
5
+26
Powered by