CompTIA CASP+ Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Enhance your CompTIA CASP+ exam readiness with our comprehensive quizzes. Sharpen your skills with detailed flashcards and multiple choice questions, each with hints and in-depth explanations. Prepare effectively for this challenging exam!

Practice this question and more.

Which is a correct implementation of a continuous monitoring risk mitigation strategy?

Audit events weekly and review findings monthly
Transfer logs daily but do not display alerts
Audit successful and failed events, transfer logs to a centralized server
Implement real-time alerts only for successful events

The correct answer is: Audit successful and failed events, transfer logs to a centralized server

A correct implementation of a continuous monitoring risk mitigation strategy focuses on thoroughness and ongoing oversight. This involves not only the collection of security logs but also the analysis of both successful and failed events to gain a comprehensive view of the security posture. By auditing both types of events, an organization can identify potential vulnerabilities and threats that may arise from successful breaches as well as attempted intrusions that were blocked. Transferring logs to a centralized server enhances the ability to analyze data efficiently and in a more organized manner, allowing for better insights and quicker responses. Centralized log management is crucial for continuous monitoring as it facilitates aggregation, correlation, and a more comprehensive analysis of security incidents over time, rather than relying on isolated data. In contrast, strategies that focus solely on certain types of events, review periods that are infrequent, or inadequate alerting mechanisms do not provide the level of continuous oversight that effective risk mitigation requires. This is why the other options do not align with the principles of a robust continuous monitoring strategy.