CISM Certified Information Security Manager – Question0633

Which of the following is MOST effective in preventing security weaknesses in operating systems?

A.
Patch management
B. Change management
C. Security baselines
D. Configuration management

Correct Answer: A

Explanation:

Explanation:
Patch management corrects discovered weaknesses by applying a correction (a patch) to the original program code. Change management controls the process of introducing changes to systems. Security baselines provide minimum recommended settings. Configuration management controls the updates to the production environment.