Crucial Exams

ISC2 Certified Cloud Security Professional (CCSP) Practice Question

A healthcare provider stores electronic health records on encrypted block storage volumes in an IaaS environment. Regulatory policy requires that no residual data be recoverable once a volume is deleted and the underlying physical drives are re-provisioned to other tenants. Which data sanitization method should the cloud customer contractually require the provider to perform to meet this requirement with the least operational overhead?

  • File-level deletion of the records using standard operating system commands within the virtual machine

  • Disabling the storage device's TRIM command before deleting the files

  • Cryptographic erasure by destroying the volume's encryption key in the provider's key management system

  • A single-pass zero overwrite of the logical volume initiated from the guest operating system

ISC2 Certified Cloud Security Professional (CCSP)
Cloud Data Security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot