ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

Your SaaS platform processes real-time financial transactions and must maintain 99.99 percent availability. All application tiers currently run in a single cloud region with nightly backups. To strengthen system and operational resiliency against a full regional outage and large-scale denial-of-service events, which strategy is MOST appropriate?

Increase compute instance sizes and enable auto-scaling only within the current region to handle traffic spikes.
Establish a warm-standby disaster recovery site that receives data once per day via scheduled backups.
Deploy a web application firewall to filter malicious traffic before it reaches the application endpoints.
Implement a multi-region active-active deployment with a global load balancer and synchronous cross-region database replication.

Report Issue

Answer Description

Deploying active-active instances of the application in two or more geographically separated regions and placing them behind a global load balancer removes the single-region dependency and lets traffic fail over automatically if one region becomes unavailable or suffers a DDoS attack. Using synchronous cross-region database replication (or a strongly consistent multi-master database) ensures that every committed transaction is durably written to each region, preventing data loss and meeting stringent recovery-point objectives. Simply scaling within one region, relying on a once-daily warm standby, or adding only a web application firewall either fail to protect against total regional loss or still permit unacceptable recovery times and data gaps. Therefore, a multi-region active-active deployment with global load balancing and synchronous replication offers the highest level of resiliency required to achieve 99.99 % availability.

Ask Bash

Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.