ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your company is designing a new AWS-based data-analytics platform that will add hundreds of Amazon S3 buckets, EC2 instances, and several SaaS subscriptions. As the newly hired SSCP, you have been asked to establish an asset-management lifecycle for this environment. Which action should you take first during the process planning and design phase to ensure every resource can be effectively protected and tracked for its entire life cycle?
Develop a comprehensive asset inventory and classification scheme that maps every planned resource to an owner, sensitivity level, and business value.
Create detailed secure-configuration baselines for all Amazon EC2 AMIs and container images that will host the analytics workloads.
Establish data-retention schedules and sanitization procedures for decommissioning cloud storage and backups at end-of-life.
Purchase and deploy an automated discovery tool to scan the new AWS accounts daily for unmanaged resources.
The process, planning, and design phase of the asset-management lifecycle begins with identifying what must be protected and determining its business importance. Creating a formal inventory and classification scheme assigns each asset an owner, a sensitivity or criticality rating, and other key metadata. This information becomes the foundation for later lifecycle activities such as automated discovery, secure configuration baselines, patch schedules, retention rules, and disposal procedures. Implementing discovery tools, defining hardening guides, or drafting destruction processes before a clear inventory and classification exist can waste effort because the organization has not yet agreed on which assets exist or how valuable they are.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is asset inventory and classification critical in the planning phase?
Open an interactive chat with Bash
What kind of metadata is typically included in an asset classification scheme?
Open an interactive chat with Bash
How do automated discovery tools complement an asset inventory?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .