CompTIA CASP+ (CAS-004) — Question 123

A Chief Information Security Officer (CISO) is concerned that a company's current data disposal procedures could result in data remanence. The company uses only SSDs. Which of the following would be the MOST secure way to dispose of the SSDs given the CISO's concern?

Answer options

• A. Degaussing
• B. Overwriting
• C. Shredding
• D. Formatting
• E. Incinerating

Correct answer: C

Explanation

Shredding the SSDs physically destroys the drives, ensuring that data cannot be recovered, thus addressing the CISO's concerns about data remanence. Other methods, such as degaussing and formatting, may not be effective with SSDs, while overwriting does not guarantee data is unrecoverable due to wear-leveling algorithms. Incinerating is not a standard practice for SSD disposal and may not be environmentally sound.