Which statement best reflects the need to implement both preventive and reactive approaches for network security?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Study for the EC-Council Network Defense Essentials Exam with flashcards and multiple-choice questions. Each question includes detailed explanations and hints to boost your preparation. Be confident and ready to succeed!

Multiple Choice

Which statement best reflects the need to implement both preventive and reactive approaches for network security?

Explanation:
Security relies on a layered approach that combines prevention and detection/response because threats evolve and no single control is perfect. Preventive measures—such as firewalls, access controls, patch management, and system hardening—reduce the chance of an incident by blocking known risks. But even well-implemented preventions can fail due to zero-days, misconfigurations, or stolen credentials. That’s where reactive capabilities come in: detection to recognize that something has happened, containment to stop the spread, eradication to remove the threat, and recovery to restore normal operations. This combination minimizes both the likelihood of incidents and their impact, providing feedback to improve defenses over time. Relying on prevention alone leaves gaps, and relying on reaction alone means breaches can unfold before action is taken. Hence, a blend of both approaches is necessary for effective network security.

Security relies on a layered approach that combines prevention and detection/response because threats evolve and no single control is perfect. Preventive measures—such as firewalls, access controls, patch management, and system hardening—reduce the chance of an incident by blocking known risks. But even well-implemented preventions can fail due to zero-days, misconfigurations, or stolen credentials. That’s where reactive capabilities come in: detection to recognize that something has happened, containment to stop the spread, eradication to remove the threat, and recovery to restore normal operations. This combination minimizes both the likelihood of incidents and their impact, providing feedback to improve defenses over time. Relying on prevention alone leaves gaps, and relying on reaction alone means breaches can unfold before action is taken. Hence, a blend of both approaches is necessary for effective network security.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy