Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

A financial services firm is retiring a legacy reporting platform that contains transaction records subject to a 7-year regulatory retention requirement. The data must remain immutable and auditable, yet it must not be easily returned to production use. Which data disposition strategy BEST meets these goals?

  • Leave the database online in read-only mode on a segregated subnet to allow auditors to query it when needed.

  • Shred the encryption keys for the database, then physically destroy all storage drives associated with the application.

  • Compress the data files and place them on the organization's shared file server with read-only permissions.

  • Export the records to tamper-resistant WORM media in an offline cold archive, apply strict access controls, and record the 7-year retention schedule.

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Lifecycle Management
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot