KT-SYS Patch management

Critical CVE has exploit in the wild; patch available. Servers are 30 days behind. FIRST priority?

Multiple choice — select one answer

Answer choices

  1. a. Disable patching to avoid reboots, without security or identity team coordination per policy.
  2. b. Patch printers first always, without security or identity team coordination per policy.
  3. c. Internet-facing and vulnerable services before internal file shares
  4. d. Wait for annual maintenance window only, without security or identity team coordination per policy.

Architectural breakdown & explanation

Risk-based prioritization focuses on exposure and exploitability.

Correct answer(s): c. Internet-facing and vulnerable services before internal file shares

Exam domain: Patch management (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — System Hygiene bank. Run a full timed practice exam with domain-weighted random questions in your browser.