CompTIA CASP+ (CAS-004) — Question 598

A cloud security architect has been tasked with selecting the appropriate solution given the following:

• The solution must allow the lowest RTO possible.
• The solution must have the least shared responsibility possible.
• Patching should be a responsibility of the CSP.

Which of the following solutions can BEST fulfil the requirements?

Answer options

• A. PaaS
• B. IaaS
• C. Private
• D. SaaS

Correct answer: D

Explanation

The correct answer is D, SaaS, because it offers a fully managed service where the CSP is responsible for most of the infrastructure, including patching, which aligns with the requirement for minimal shared responsibility. PaaS and IaaS require more management from the user, increasing shared responsibility, while a Private cloud does not inherently provide the benefits of low RTO and shared responsibility typically associated with SaaS solutions.