CompTIA SecurityX (CAS-005) — Question 282

An organization that performs real-time financial processing is implementing a new backup solution. Given the following business requirements:

• The backup solution must reduce the risk for potential backup compromise
• The backup solution must be resilient to a ransomware attack
• The time to restore from backups is less important than the backup data integrity
• Multiple copies of production data must be maintained.

Which of the following backup strategies best meets these requirements?

Answer options

• A. Creating a secondary, immutable database and adding live data on a continuous basis
• B. Utilizing two connected storage arrays and ensuring the arrays constantly sync
• C. Enabling remote journaling on the databases to ensure real-time transactions are mirrored
• D. Setting up anti-tampering on the databases to ensure data cannot be changed unintentionally

Correct answer: A

Explanation

The correct answer is A because creating a secondary, immutable database ensures that the backup data is secure from tampering and ransomware attacks while maintaining multiple copies. Option B, while useful for synchronization, does not address ransomware resilience or integrity. Option C focuses on real-time mirroring, which does not ensure data integrity or protection from compromise. Option D provides a level of protection but does not create multiple copies or ensure resilience to attacks.