CompTIA CASP+ (CAS-004) — Question 429

A company that provides services to clients who work with highly sensitive data would like to provide assurance that the data’s confidentiality is maintained in a dynamic, low-risk environment. Which of the following would best achieve this goal? (Choose two.)

Answer options

• A. Install a SOAR on all endpoints.
• B. Hash all files.
• C. Install SIEM within a SOC.
• D. Encrypt all data and files at rest, in transit, and in use.
• E. Configure SOAR to monitor and intercept files and data leaving the network.
• F. Implement file integrity monitoring.

Correct answer: D, E

Explanation

The correct answers, D and E, ensure that data remains confidential through encryption and active monitoring of data leaving the network. Options A, B, C, and F do not directly address the confidentiality requirements in a dynamic environment. For instance, simply hashing files does not protect their confidentiality, and installing SIEM or SOAR without encryption does not guarantee the data's confidentiality.