CompTIA Cloud+ (CV0-004) — Question 83

A cloud developer resigned from an organization and gave a two-week notice. Within the first week since the developer resigned, a security analyst identifies large volumes of file downloads to the developer’s laptop from the source code repository. Which of the following security controls would be the best way to mitigate the organization’s risk of data loss?

Answer options

• A. Implementing a policy to stop cloud developers from sharing passwords
• B. Preventing cloud developers from accessing the source code repository
• C. Updating outbound firewall rules to block the cloud developer’s IP address
• D. Blocking internet access for employees that resign from the organization
• E. Prohibiting files on the local drive from being transferred to USB drives

Correct answer: C

Explanation

The best option is C, as blocking the developer's IP address will immediately stop any further unauthorized access to sensitive data. Options A and B do not address the immediate risk since the developer already had access prior to resignation. While D and E may help in general data protection, they do not specifically target the current situation of data being downloaded before the developer's access is revoked.