A regional bank is facing increased cyber threats and is concerned about the security of its servers. As a security analyst, you have been asked to provide a recommendation designed to improve the security of the servers while maintaining full operation. Which of the following options is the MOST effective?
A. Implement and enforce host-based IPS using the default ruleset.
B. Enable all services on the servers to maximize functionality.
C. Migrate the servers to a public cloud provider.
D. Implement a secure baseline, consistently apply updates and patches, and adhere to hardening guidelines.