Notifications
Clear all
Topic starter
09/06/2022 5:34 pm
A security engineer needs to implement a solution to increase the security posture of user endpoints by providing more visibility and control over local administrator accounts. The endpoint security team is overwhelmed with alerts and wants a solution that has minimal operational burdens. Additionally, the solution must maintain a positive user experience after implementation.
Which of the following is the BEST solution to meet these objectives?
- A . Implement Privileged Access Management (PAM), keep users in the local administrators group, and enable local administrator account monitoring.
- B . Implement PAM, remove users from the local administrators group, and prompt users for explicit approval when elevated privileges are required.
- C . Implement EDR, remove users from the local administrators group, and enable privilege escalation monitoring.
- D . Implement EDR, keep users in the local administrators group, and enable user behavior analytics.
Suggested Answer: A
Explanation:
Reference: https://www.cyberark.com/what-is/privileged-access-management/
Explanation:
Reference: https://www.cyberark.com/what-is/privileged-access-management/