ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
A healthcare startup plans to add a public-facing feature that lets patients upload arbitrary diagnostic images directly to an Amazon S3 bucket via pre-signed URLs. During a risk workshop, analysts flag a high likelihood that attackers could upload malware, and development resources to build robust file-scanning controls are unavailable this year. Leadership decides to cancel the feature until a future release. Which risk-treatment strategy does this decision exemplify?
Risk avoidance removes exposure by deciding not to undertake the activity that creates the threat. By canceling the image-upload feature, the company eliminates the possibility of malicious files entering its environment, driving the likelihood of that specific risk to zero. The other options are different strategies: accepting the risk would proceed without additional controls, transferring would shift liability to another party (e.g., cyber-insurance or a managed service), and mitigating would implement technical safeguards such as antivirus scanning or isolated upload processing while still offering the feature.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are pre-signed URLs in Amazon S3?
Open an interactive chat with Bash
How does risk avoidance differ from other risk-treatment strategies?
Open an interactive chat with Bash
Why is file-scanning critical in public-facing applications?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Risk Identification, Monitoring and Analysis
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .