Cisco Cyber Security Practice Exam

What is a recommended countermeasure in the event of unauthorized access to network resources?

• A. Implement encryption protocols
• B. Send alerts to all users
• C. Implement intrusion detection and prevention systems
• D. Install a new firewall

The correct answer is: Implement intrusion detection and prevention systems

Implementing intrusion detection and prevention systems (IDPS) is a highly recommended countermeasure in the event of unauthorized access to network resources. IDPS tools are designed to monitor network traffic for suspicious activity and vulnerabilities. When unauthorized access is detected, they can take action, such as alerting administrators, logging the incident for further review, and even blocking malicious actors in real-time. By utilizing an IDPS, organizations can enhance their ability to respond quickly to potential security breaches. These systems analyze patterns and traffic anomalies, helping to identify and mitigate threats before they can cause significant harm to the network. Furthermore, they are essential for maintaining compliance with various security standards and regulations. In contrast, while encryption protocols might protect data during transmission, they do not directly address unauthorized access to network resources. Sending alerts to all users may create unnecessary panic and may not provide the specific insights needed for an effective response. Installing a new firewall could strengthen perimeter security, but it does not provide the same level of monitoring and real-time response capabilities that an IDPS offers. Overall, the integration of an IDPS is a proactive approach to safeguarding network integrity and preventing further unauthorized access.