Question

After several industry competitors suffered data loss as a result of cyberattacks, the Chief Operating Officer (COO) of a company reached out to the information security manager to review the organization's security stance. As a result of the discussion, the COO wants the organization to meet the following criteria:

Blocking of suspicious websites
Prevention of attacks based on threat intelligence
Reduction in spam
Identity-based reporting to meet regulatory compliance
Prevention of viruses based on signature
Protect applications from web-based threats

Which of the following would be the BEST recommendation the information security manager could make?

A. Reconfigure existing IPS resources
B. Implement a WAF
C. Deploy a SIEM solution
D. Deploy a UTM solution
E. Implement an EDR platform

Answer 1

The information security manager's best recommendation would be to deploy a UTM (Unified Threat Management) solution.

Step-by-step explanation:

The best recommendation the information security manager could make in this scenario is to deploy a UTM solution.

A UTM (Unified Threat Management) solution is a comprehensive security system that combines multiple security features, such as firewall, intrusion prevention system (IPS), antivirus, web filtering, and more, into a single device or software. It provides all the necessary tools to block suspicious websites, prevent attacks based on threat intelligence, reduce spam, protect applications from web-based threats, and prevent viruses based on signature. By implementing a UTM solution, the organization can enhance its security stance and meet the COO's criteria.