Minimum standards for securing the technical infrastructure should be defined in a security:
Click on the arrows to vote for the correct answer
A. B. C. D.D.
Minimum standards for securing the technical infrastructure should be defined in a security architecture document.
This document defines how components are secured and the security services that should be in place.
A strategy is a broad, high-level document.
A guideline is advisory in nature, while a security model shows the relationships between components.
The answer to this question is B. guidelines.
Guidelines refer to specific recommendations or rules for implementing security controls and managing security risks. In the context of securing the technical infrastructure, guidelines should outline the minimum standards for securing the hardware, software, and network components of the technical infrastructure.
These guidelines may cover a wide range of security topics, such as access controls, encryption, system configuration, incident response, and vulnerability management. They should also consider relevant industry standards and regulatory requirements.
The guidelines should be developed based on a comprehensive risk assessment and should be reviewed and updated regularly to address new threats and changes in the IT environment.
While a security strategy may provide high-level goals and objectives for securing the technical infrastructure, guidelines are necessary for defining the specific measures that need to be taken to achieve those goals. A security model may provide a framework for understanding security risks and controls, but it does not provide specific guidelines for implementation. A security architecture may provide a detailed blueprint for the technical infrastructure, but it does not necessarily define the minimum standards for securing it.