An enterprise’s Chief Technology Officer (CTO) and Chief Information Security Officer (CISO) are meeting to discuss ongoing capacity and resource planning issues. The enterprise has experienced rapid, massive growth over the last 12 months, and the technology department is stretched thin for resources. A new accounting service is required to support the enterprise’s growth, but the only available compute resources that meet the accounting service requirements are on the virtual platform, which is hosting the enterprise’s website.
Which of the following should the CISO be MOST concerned about?
A . Poor capacity planning could cause an oversubscribed host, leading to poor performance on the company’s website.
B . A security vulnerability that is exploited on the website could expose the accounting service.
C . Transferring as many services as possible to a CSP could free up resources.
D . The CTO does not have the budget available to purchase required resources and manage growth.
Answer: B
Leave a Reply