CAS-004 • Practice Test 36
Free CAS-004 practice test — 15 questions with explanations. Set 36. No signup required.
The exhibit shows results from a CIS Controls assessment. Based on the findings, which control deficiency poses the greatest risk to the organization and should be prioritized for remediation?
Refer to the exhibit. CIS Controls Assessment Results: Control 3: Data Protection — Score: 2/5 - Subcontrol 3.1: Inventory of sensitive data — 0/5 (Not implemented) - Subcontrol 3.2: Encryption of sensitive data at rest — 4/5 - Subcontrol 3.3: Encryption of sensitive data in transit — 3/5 Control 8: Incident Response — Score: 3/5 - Subcontrol 8.1: Incident response plan — 5/5 - Subcontrol 8.2: Incident response testing — 1/5 Control 13: Network Monitoring and Defense — Score: 1/5 - Subcontrol 13.1: Centralized logging — 2/5 - Subcontrol 13.2: Intrusion detection — 0/5