Question

You are asked to advise on the location of a device on the corporate network. The system will host a website that will act as the face of the organization and, therefore, must be accessible to the public yet protected as best as possible. Which of the following recommendations reflects the best option?

A.Place the system in the DMZ (Demilitarized Zone)
B.Place the system inside the internal network
C.It doesn't matter where you place the device, just ensure security controls are applied
d. No systems owned by the corporation should be publicly accessible

Answer 1

The best location for a public-facing website system is in the DMZ, as it provides a secure buffer zone between the public internet and the internal network.

Step-by-step explanation:

You are asking about the best location for a system that hosts a public-facing website for an organization while ensuring optimal security. The most appropriate recommendation is A. Place the system in the DMZ (Demilitarized Zone). A DMZ is a network segment that acts as a buffer zone between the public internet and the organization's internal network.

This setup allows the public to access the services hosted on the system while keeping the internal network more secure from external threats. Placing this system in the DMZ also allows for better implementation of security controls specific to public-facing services without compromising the security of the internal network.

By placing the system in the DMZ, it can be exposed to the public while still being protected by security controls. Placing the system inside the internal network may expose the entire network to potential security risks, and not having any publicly accessible systems may limit the organization's ability to engage with the public.

Therefore, the correct answer is A. Place the system in the DMZ (Demilitarized Zone).