CompTIA SecurityX (CAS-005) — Question 25

A company that provides services to clients who work with highly sensitive data would like to provide assurance that the data's confidentiality is maintained in a dynamic, low-risk environment. Which of the following would best achieve this goal? (Choose two.)

Answer options

• A. Install a SOAR on all endpoints.
• B. Hash all files.
• C. Install SIEM within a SOC.
• D. Encrypt all data and files at rest, in transit, and in use.
• E. Configure SOAR to monitor and intercept files and data leaving the network.
• F. Implement file integrity monitoring.

Correct answer: D, E

Explanation

The correct answers are D and E because encrypting all data ensures that even if it is accessed, it remains confidential, while configuring SOAR to monitor outgoing data helps prevent unauthorized data exfiltration. Options A, B, C, and F do not directly address the need for maintaining confidentiality in a dynamic environment.