ISC2 Governance, Risk and Compliance (CGRC) Practice Question
During change control review, your organization considers replacing its on-premise file repository with a SaaS platform that will store sensitive client data. To evaluate how this change could affect the existing security and privacy posture, which factor should the review team examine first?
The vendor's roadmap for adding new collaboration features over the next year
The projected effect on end-user productivity during the cutover weekend
The monthly subscription cost compared with existing server maintenance expenses
The SaaS provider's encryption methods, access controls, and data residency guarantees for stored information
When data containing personally identifiable or otherwise sensitive information is moved to a cloud service, the most immediate concern for security and privacy is how that provider will protect the data. This includes verifying that strong encryption is applied in transit and at rest, appropriate access controls are enforced, and that data is stored in jurisdictions that meet the organization's regulatory obligations. Although cost, user productivity, and future feature sets are relevant to project planning, they do not speak directly to the potential impact on confidentiality, integrity, and compliance, which is the primary focus when analysing a proposed change's effect on the security and privacy posture.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Explain what data residency guarantees mean.
Open an interactive chat with Bash
Why is encryption important both in transit and at rest?
Open an interactive chat with Bash
What are access controls, and why are they crucial for SaaS platforms?
Open an interactive chat with Bash
ISC2 Governance, Risk and Compliance (CGRC)
Compliance Maintenance
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .