Crucial Exams

ISC2 Certified Cloud Security Professional (CCSP) Practice Question

Your organization stores files in an AWS S3 data lake that synchronizes with several SaaS analytics platforms. To make sure encryption, retention, and sharing controls follow each object no matter where it is copied, the cloud security team adds a key-value pair such as "DataClass=Restricted" to every object and configures the SaaS tools to read that information from the object's metadata. Which type of data labeling approach is the team using?

  • Inline data masking that removes sensitive fields before storage

  • Relying on inherited directory access control lists (ACLs) for classification

  • Embedded watermarking of the document to show the classification level

  • External metadata tagging that stores the classification label as an object attribute

ISC2 Certified Cloud Security Professional (CCSP)
Cloud Data Security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot