CISA Certified Information Systems Auditor – Question1778

Which of the following BEST describes the concept of ""defense in depth""?

A.
more than one subsystem needs to be compromised to compromise the security of the system and the information it holds.
B. multiple firewalls are implemented.
C. multiple firewalls and multiple network OS are implemented.
D. intrusion detection and firewall filtering are required.
E. None of the choices.

Correct Answer: A

Explanation:

Explanation:
“With 0″”defense in depth””, more than one subsystem needs to be compromised to compromise the security of the system and the information it holds. Subsystems should default to secure settings, and wherever possible should be designed to “”fail secure”” rather than “”fail insecure””.”