Which of the following is a specific focus of Configuration Compliance?

Configuration Compliance specifically focuses on ensuring that a system's configuration settings align with predefined security policies and best practices. One crucial aspect of this is the management and enforcement of security controls, such as ensuring that default passwords are changed to stronger, more secure credentials. Default passwords are widely recognized vulnerabilities because they are known by default and can be easily exploited if not changed.

By prioritizing the review and change of default passwords, Configuration Compliance helps organizations mitigate security risks associated with unauthorized access. The practice ensures all configurations adhere to required standards and minimizes the chance of easily compromised systems. This focus plays a critical role in maintaining overall security hygiene and preventing vulnerabilities associated with weak authentication mechanisms.

In contrast, the other options pertain to aspects of security and operations but do not specifically align with the objectives of Configuration Compliance. User access reviews ensure that only authorized individuals have access to sensitive systems but are more about access control than configuration. Network uptime pertains to the availability and performance of the network, while software deployment focuses on application management rather than the security configuration of systems.