A security administrator has noticed that an increased number of employees’ workstations are becoming infected with malware. The company deploys an enterprise antivirus system as well as a web content filter, which blocks access to malicious web sites where malware files can be downloaded. Additionally, the company implements technical measures to disable external storage.
Which of the following is a technical control that the security administrator should implement next to reduce malware infection?
A . Implement an Acceptable Use Policy which addresses malware downloads.
B . Deploy a network access control system with a persistent agent.
C . Enforce mandatory security awareness training for all employees and contractors.
D . Block cloud-based storage software on the company network.
Answer: D
Explanation:
The question states that the company implements technical measures to disable external storage.
This is storage such as USB flash drives and will help to ensure that the users to do not bring unauthorized data that could potentially contain malware into the network.
We should extend this by blocking cloud-based storage software on the company network. This would block access to cloud-based storage services such as Dropbox or OneDrive.
Incorrect Answers:
A: An Acceptable Use Policy is always a good idea. However, it just tells the users how they ‘should’ use the company systems. It is not a technical control to prevent malware.
B: A network access control system is used to control access to the network. It does not prevent malware on client computers.
C: Mandatory security awareness training for all employees and contractors is always a good idea.
However, it just educates the users about potential security risks. It is not a technical control to prevent malware.