CompTIA CySA+ (CS0-003) — Question 498

An organization has deployed a cloud-based storage system for shared data that is in phase two of the data life cycle. Which of the following controls should the security team ensure are addressed? (Choose two.)

Answer options

• A. Data classification
• B. Data destruction
• C. Data loss prevention
• D. Encryption
• E. Backups
• F. Access controls

Correct answer: D, F

Explanation

The correct answers are D (Encryption) and F (Access controls) because during the second phase of the data life cycle, it is crucial to protect data through encryption and ensure that only authorized users have access. The other options, while important, are more relevant to different phases of the data life cycle, such as data destruction which pertains to the end phase.