CompTIA A+ Core 2 (220-1102) — Question 45

An organization's Chief Financial Officer (CFO) is concerned about losing access to very sensitive, legacy, unmaintained PII on a workstation if a ransomware outbreak occurs. The CFO has a regulatory requirement to retain this data for many years. Which of the following backup methods would BEST meet the requirements?

Answer options

• A. A daily, incremental backup that is saved to the corporate file server
• B. An additional, secondary hard drive in a mirrored RAID configuration
• C. A full backup of the data that is stored off site in cold storage
• D. Weekly, differential backups that are stored in a cloud-hosting provider

Correct answer: C

Explanation

The correct answer is C because storing a full backup off-site in cold storage ensures that the sensitive PII is preserved securely and is not vulnerable to ransomware attacks. Options A and D involve backups that could be compromised if the primary workstation is attacked, while option B does not provide off-site protection, which is crucial for regulatory compliance.