Which of the following is the BEST way to ensure that a corporate network is adequately secured
against external attack?
A.
Utilize an intrusion detection system.
B.
Establish minimum security baselines.
C.
Implement vendor recommended settings.
D.
Perform periodic penetration testing.
Explanation:
Penetration testing is the best way to assure that perimeter security is adequate. An intrusion
detection system (IDS) may detect an attempted attack, hut it will not confirm whether the
perimeter is secured. Minimum security baselines and applying vendor recommended settings are
beneficial, but they will not provide the level of assurance that is provided by penetration testing.