Upon reviewing the vulnerability management plan, a cybersecurity analyst notices that certain vulnerabilities are not being patched despite having existing patches available. Which of the following is the MOST likely inhibitor to the remediation of these vulnerabilities?
Budget constraints for new security tools
The presence of redundant systems
Strict encryption standards that block patch installations
Business process interruption
The use of legacy systems that cannot support new patches
The correct answer is Business process interruption. Often, organizations are hesitant to apply patches that might disrupt critical business operations, especially when systems require to be online continuously or when patches require a reboot which might lead to downtime. Legacy systems are also a common inhibitor, but the information given specifies that patches are available, which implies that the systems affected are capable of being patched, and thus is not the best answer in this context. Budget constraints and encryption standards do not directly relate to the hesitation in applying available patches. The presence of redundant systems is generally a facilitator for applying patches, as it allows for failover during maintenance.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why are business process interruptions a concern when applying patches?
Open an interactive chat with Bash
What strategies can organizations use to manage patching without interrupting critical business processes?
Open an interactive chat with Bash
How do legacy systems impact the patching process?