Crucial Exams

ISC2 Certified Cloud Security Professional (CCSP) Practice Question

Your company uses a SaaS collaboration platform to share sensitive design documents with external suppliers. The security team mandates that users must be prevented from printing or copying the files, their access must be revocable even after the files are downloaded, and suppliers should still be able to work offline for up to seven days. Which control best meets all of these requirements?

  • Enable server-side encryption with customer-managed keys for the storage bucket that contains the shared documents.

  • Turn on object versioning and MFA delete for the storage bucket to preserve prior versions and prevent unauthorized deletions.

  • Require TLS 1.2 for all sessions to the SaaS application to encrypt data in transit.

  • Implement a cloud-based Information Rights Management solution that embeds usage policies in each document and validates licenses when the file is opened.

ISC2 Certified Cloud Security Professional (CCSP)
Cloud Data Security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot