CompTIA Cloud+ (CV0-003) — Question 310

A cloud administrator recently noticed that a number of files stored at a SaaS provider’s file-sharing service were deleted. As part of the root cause analysis, the administrator noticed the parent folder permissions were modified last week. The administrator then used a test user account and determined the permissions on the files allowed everyone to have write access. Which of the following is the best step for the administrator to take NEXT?

Answer options

• A. Identify the changes to the file-sharing service and document.
• B. Acquire a third-party DLP solution to implement and manage access.
• C. Test the current access permissions to the file-sharing service.
• D. Define and configure the proper permissions for the file-sharing service.

Correct answer: D

Explanation

The best next step is to define and configure the proper permissions for the file-sharing service (D) to prevent unauthorized access and further deletions. While documenting changes (A) and testing permissions (C) are important, they do not directly address the immediate issue of correcting the permissions. Acquiring a third-party DLP solution (B) might be beneficial in the long run, but it is not an urgent fix for the current problem.