Crucial Exams

ISC2 Governance, Risk and Compliance (CGRC) Practice Question

Your organization has migrated all data and functionality from an on-premise payroll application to a new cloud service and is now executing the approved decommissioning plan for the retired system. To meet the requirement to terminate access for all users and minimize residual risk, what should the security team do first after the system is removed from production service?

  • Disable or delete every user and administrator account in all identity stores tied to the payroll system.

  • Transfer the physical servers to the organization's approved e-waste recycling vendor.

  • Begin DoD-compliant wiping of the payroll servers' hard drives prior to hardware disposal.

  • Remove the application's build artifacts and deployment scripts from the configuration-management repository.

ISC2 Governance, Risk and Compliance (CGRC)
Compliance Maintenance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot