Why is it beneficial to provide multiple recommendations with trade-offs?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Why is it beneficial to provide multiple recommendations with trade-offs?

Explanation:
Presenting several recommendations with trade-offs reflects that different security controls have varying costs, impacts, and compatibility with the target environment. This approach lets stakeholders weigh factors like budget, downtime, performance, and regulatory requirements, choosing mitigations that still reduce risk but fit the system and its constraints. It also provides practical alternatives if a preferred control can’t be implemented, helping prioritize actions and avoid overcommitting to a single solution. The other statements miss this realistic framing: no single measure guarantees the best security, and the idea isn’t about longer testing or less documentation.

Presenting several recommendations with trade-offs reflects that different security controls have varying costs, impacts, and compatibility with the target environment. This approach lets stakeholders weigh factors like budget, downtime, performance, and regulatory requirements, choosing mitigations that still reduce risk but fit the system and its constraints. It also provides practical alternatives if a preferred control can’t be implemented, helping prioritize actions and avoid overcommitting to a single solution. The other statements miss this realistic framing: no single measure guarantees the best security, and the idea isn’t about longer testing or less documentation.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy