ISC2 Certified Cloud Security Professional (CCSP) Practice Question
Your company will move seven years of audit logs from on-premises tape to a cloud provider's low-cost object storage tier. After the regulatory retention period each object must be irretrievably destroyed. During design reviews, which specific threat related to this long-term cloud storage type should the security architect highlight as the MOST critical to address?
Virtual machine escape that allows a tenant to access another tenant's memory
Vendor lock-in that makes migrating the logs to another cloud difficult
Noisy-neighbor resource contention affecting read and write performance
Data remanence caused by incomplete or unverifiable deletion of replicated objects
Object storage is designed for durability, with multiple replicated copies that may reside on different disks, appliances, and even facilities. When an organization relies on the provider's delete calls alone, remnants of those replicas can persist outside the customer's view. This residual data, known as data remanence or incomplete deletion, violates requirements that audit logs be permanently destroyed after seven years. While concerns such as vendor lock-in, resource contention, and hypervisor escape are real, they are not unique to long-term object storage or directly tied to end-of-life data handling. Therefore, data remanence is the primary threat that must be mitigated through verifiable sanitization methods, cryptographic erasure, or destruction certificates.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is data remanence?
Open an interactive chat with Bash
How does cryptographic erasure address data remanence?
Open an interactive chat with Bash
What is an object storage tier in cloud services?
Open an interactive chat with Bash
What is data remanence?
Open an interactive chat with Bash
What is cryptographic erasure and how can it help mitigate data remanence?
Open an interactive chat with Bash
What is the role of destruction certificates in addressing data remanence?
Open an interactive chat with Bash
ISC2 Certified Cloud Security Professional (CCSP)
Cloud Data Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .