(ISC)2 Certified in Cybersecurity Practice Exam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the (ISC)2 Certified in Cybersecurity Exam with comprehensive quizzes and extensive question banks. Enhance your skills with detailed explanations and practice tests designed to improve your expertise for the certification exam. Get exam-ready now!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

What type of security standard determines the minimum security configuration for systems?

  1. Baseline

  2. Benchmark

  3. Standard Operating Procedure

  4. Protocol

The correct answer is: Baseline

The type of security standard that determines the minimum security configuration for systems is known as a baseline. A security baseline serves as a fundamental reference point, outlining the essential security measures and configurations required to protect systems from vulnerabilities. These baselines are typically established based on industry best practices or regulatory requirements and play a crucial role in ensuring that all systems maintain a certain level of security to mitigate risks. By adhering to a baseline, organizations can ensure that all systems within their environment meet a consistent set of security standards, helping to identify areas that require improvement or that are out of compliance. Baselines can evolve as new threats emerge or as technology changes, making them an essential component of an organization’s overall cybersecurity strategy. In contrast, other concepts such as benchmarks are used more for comparison against the best practices or specific configurations rather than establishing a minimum standard. Standard Operating Procedures (SOPs) provide detailed steps for performing specific tasks but do not serve as a comprehensive security framework. Protocols refer to predefined formats for communication between systems rather than configurations concerning security. Hence, baselines are specifically designed to outline security requirements rather than detailing processes or communication formats.

More Questions Like This