Which of the following BEST ensures that modifications made to in-house developed business
applications do not introduce new security exposures?
A.
Stress testing
B.
Patch management
C.
Change management
D.
Security baselines
Explanation:
Change management controls the process of introducing changes to systems to ensure that
unintended changes are not introduced. Patch management involves the correction of softwareweaknesses and helps ensure that newly identified exploits are mitigated in a timely fashion.
Security baselines provide minimum recommended settings. Stress testing ensures that there are
no scalability problems.