CompTIA CASP+ Practice Test

In making a case to purchase a new IPS, what should the security analyst provide to the Information Security Officer?

• A. Summary of current firewall performance
• B. Emerging threat reports with data breaches
• C. Feedback from other companies on IPS effectiveness
• D. Historical incident reports from the last year

The correct answer is: Emerging threat reports with data breaches

The choice of providing emerging threat reports with data breaches is particularly effective in making a case for the purchase of a new Intrusion Prevention System (IPS) because it directly addresses the current and evolving risk landscape that organizations face. By presenting data on recent breaches, the security analyst highlights the urgency and relevance of investing in advanced security measures, such as an IPS, to proactively protect against similar threats. This information can demonstrate a clear link between the investment in an IPS and the potential reduction of risk, as well as evidence of the increasing sophistication of cyber threats. Emerging threat reports can illustrate trends and common vulnerabilities being exploited, underscoring the necessity for improved defenses, including an IPS that can provide both detection and prevention capabilities. In contrast, the other options may provide context and supporting information but do not directly underscore the immediacy and necessity of acquiring new defensive measures in light of current threat trends. Summary of firewall performance may highlight limitations but fails to specifically tie those limitations to the threat landscape. Feedback from other companies, while valuable, can introduce subjective opinions rather than concrete data. Historical incident reports can certainly demonstrate past issues but may lack alignment with ongoing threats, which are continuously evolving. Thus, focusing on current, emerging threats connects the dots between organizational security needs