What is the MOST likely recommendation from a CISO to mitigate the risk of a prolonged DDoS attack?

The recommendation from a Chief Information Security Officer (CISO) to implement a hot-site failover location in the context of mitigating the risk of a prolonged Distributed Denial of Service (DDoS) attack is based on the need for business continuity and resilience. A hot-site failover location allows an organization to maintain critical operations even when its primary data center is compromised or rendered inoperable due to a DDoS attack. This ensures that essential services remain accessible to users and customers, minimizing downtime and the associated financial and reputational damage.

In the case of a DDoS attack, traffic is often flooded to overwhelm the targeted systems. While having redundant locations helps absorb or route traffic away from the main site, it also ensures that there is a backup site with operational capability that can take over if the primary site becomes unusable. This strategic measure increases overall availability and enhances the organization's disaster recovery strategy.

The other options, while potentially beneficial in certain contexts, do not address the continuous availability aspect as effectively as a hot-site failover. Upgrading bandwidth may provide some immediate relief from a minor DDoS, but it is not a sustainable solution for more sophisticated or prolonged attacks. Switching to a complete software as a service (SaaS