Based on my work experience, I would believe that the correct awnser to question 1 is Vulnerability Management. I already saw a lot that changes for patch management where set to "implemented" and "successfull", however some servers where not patched. Then this gets picked up by Vulnerability reports and we inform the engineers to patch urgently the servers that where missed. Or should we ignore work experience when taking the CISSP and assume that patch management also includes that the engineers actually check if all servers are patched?

Yes. Coffee shots are helpful and provoke our thinking. Please continue the efforts for all the students and hopefully your passion. Thank you for wonderful video.

Great job sir Prabh.

Excellent!

Thanks Prabh. I would welcome more scenario based coffee shots.

Thanks prabh bhai. We need more of these .

is not patch management a subset of vulnerability management ? Hence answer should be the latter.

Regarding SQL injection and cross site scripting attacks question, WAP can effectively prevent as it also provides input validation. It’s one of many reasons why we implement WAP, but your explanation addressed that WAP can’t do input validation and option C - Input Validation and Output encoding is the best for your choice. May you help explain more Probh ?

Thank you so much for taking your own time to do this. These are fantastic. Please do more

Thanks a lot Prabh for these shots. Excellent. Regarding the question related to symmetric and asymmetric, the answer 'Both' is right only because the question says that they are considering using symmetric and asymmetric. If that was not mentioned, then it would have been just asymmetric, because out of three answer we cannot chose both. hope my understanding is correct.

Amazing content you bring up for the welfare of certification aspirants 👏👏👏

Love you Prabh. You are star :) Thank you.

This is gold

Thanks for your efforts this was great 👍

Hi Prabh, Data Loss Prevention (DLP) and Mobile Device Management (MDM) are two distinct technologies that serve different purposes. DLP is a security solution that helps organizations prevent data leakage by monitoring, detecting, and blocking sensitive data from leaving the organization’s network. On the other hand, MDM is a device management solution that helps organizations manage and secure mobile devices such as smartphones, tablets, and laptops. MDM solutions include features such as device configuration, secure app distribution, and remote wipe, while DLP solutions include features such as data classification, encryption, and access controls 3. Therefore, DLP is not part of MDM solution. Please help to clarify.

WAF can do input validation

Thank you very much sir..

Thank You!

I believe Incident Management Plan should be enabled which will cover Patch management and vulnerability management...

Yes please

NAC check the status of device before allowing them to connect to network i.e check security policy/ malware status etc . Dont you think in last question NAC may be a better solution. Secondly i thought MDM was for mobile smartphone device. BYOD can be a laptop as well.. i might be wrong.. kindly explain if posssible

Yes I do agree that patch management is to be done urgently so that the breach may spread to other domains. Also. But I feel incident management has a key role to play. The same thing could appear with another customers portal also .Please clear my doubt.

you are gem ♦

The WAF question is a bit confusingmm

Hi Prabh, How can we identify the vulnerability if there is no vulnerability management ? Patch management is something not done by security team, but IT team right. So can the answer be Vulnerability management ? That comes first I believe.

Cant even finish to read this scenario much more in exam 🤠