CompTIA CASP+ (CAS-004) — Question 332

A security architect is reviewing the following organizational specifications for a new application:

• Be sessionless and API-based
• Accept uploaded documents with PII, so all storage must be ephemeral
• Be able to scale on-demand across multiple nodes
• Restrict all network access except for the TLS port

Which of the following ways should the architect recommend the application be deployed in order to meet security and organizational infrastructure requirements?

Answer options

• A. Utilizing the cloud container service
• B. On server instances with autoscaling groups
• C. Using scripted delivery
• D. With a content delivery network

Correct answer: A

Explanation

The correct answer is A because cloud container services offer sessionless operations, ephemeral storage, and scalability across nodes while effectively managing network access restrictions. Option B involves server instances which may not provide ephemeral storage for PII. Options C and D do not adequately address the specific requirements related to security and infrastructure for the application.