Which two of the following are best practices... target systems?

Which two of the following are best practices to help reduce the possibility of malware arriving on the target systems? (Choose two.)

When developing software, implement secure coding practices, which may help reduced Remote Code Execution (RCE) exploits.
Allow users to configure their web browser’s security profiles so they can browse the Internet with fewer warning messages.
With client-side attacks being a very common attack vector, disable the safe browsing feature on the browser.
Provide each workstation the ability to perform full-packet capture, providing the users the ability to perform “self-inspection” on local network events.
Closely monitor your network traffic by performing deeper and more advanced analytics to see everything happening across your network.

Explanation & Hint:

To help reduce the possibility of malware arriving on the target systems, the best practices would be:

When developing software, implement secure coding practices, which may help reduce Remote Code Execution (RCE) exploits: Secure coding practices are essential in software development to prevent vulnerabilities that can be exploited by malware. By focusing on writing secure code, developers can significantly reduce the risk of RCE exploits, which are a common way for malware to gain unauthorized access or control over a system.
Closely monitor your network traffic by performing deeper and more advanced analytics to see everything happening across your network: Effective monitoring and analysis of network traffic can help identify and mitigate potential threats, including malware, before they compromise systems. This involves using advanced analytics tools and techniques to detect unusual activities or patterns that might indicate the presence of malware.

The other options are not considered best practices for reducing the risk of malware:

Allowing users to configure their web browser’s security profiles with fewer warning messages can actually increase the risk of malware infections, as users might unknowingly access malicious websites.
Disabling the safe browsing feature on the browser is counterproductive. Safe browsing is a security feature designed to identify and warn users about potentially dangerous sites, and disabling it would reduce protection against threats.
While full-packet capture on each workstation can provide detailed information about network events, it is not practical or efficient as a standard practice for all users. This approach can lead to an overwhelming amount of data to manage and analyze, and it requires significant technical skill to interpret the data effectively. It’s more suitable for specific investigative or forensic purposes rather than as a general preventive measure against malware.