A financial services company is planning to conduct a vulnerability scan on its network. The company is bound by strict regulatory requirements that limit the times during which intensive network scanning can be performed. Additionally, they need to minimize performance impact on their operational systems during business hours. What is the most appropriate approach for scheduling the scan?
Schedule the scan during peak business hours to ensure it captures real-time traffic patterns.
Run the scan continuously throughout the day to cover both peak and off-peak traffic.
Perform the scan during off-peak hours to comply with regulatory requirements and to minimize impact.
Delegate the scan times to an automated system, without regard for specific regulatory requirements.
The correct answer is B, "Perform the scan during off-peak hours to comply with regulatory requirements and to minimize impact." Regulatory requirements and operational performance are key factors in scheduling scans. Conducting scans during off-peak hours ensures compliance with regulatory constraints and minimizes interference with daily business operations. Answer A is incorrect because scheduling during peak business hours would likely disrupt operations and may not be compliant with regulations. Answer C and D are incorrect because they either disregard the impact on business operations or ignore regulatory requirements.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are vulnerability scans and why are they important?
Open an interactive chat with Bash
What are off-peak hours?
Open an interactive chat with Bash
What are regulatory requirements in the context of vulnerability scanning?