CompTIA Cloud+ (CV0-004) — Question 45

A cloud architect is preparing environments to develop a new application that will process sensitive data. The project team consists of one internal developer, two external consultants, and three testers. Which of the following is the most important security control for the cloud architect to consider implementing?

Answer options

• A. Setting up private development, public development, and testing environments
• B. Segregating environments for internal and external teams
• C. Configuring DDoS protection to mitigate the risk of downtime
• D. Using IAM and ACL in order to bolster DLP

Correct answer: B

Explanation

The correct answer is B because segregating environments for internal and external teams helps prevent unauthorized access and protects sensitive data from potential threats posed by external consultants. Options A and C, while important, do not address the specific need for access control between internal and external team members. Option D focuses on data loss prevention, but it is secondary to ensuring proper segregation of environments.