CompTIA Security+ (SY0-601) — Question 573

The Chief Information Security Officer of an organization needs to ensure recovery from ransomware would likely occur within the organization's agreed-upon RPOs and RTOs. Which of the following backup scenarios would best ensure recovery?

Answer options

• A. Hourly differential backups stored on a local SAN array
• B. Daily full backups stored on premises in magnetic offline media
• C. Daily differential backups maintained by a third-party cloud provider
• D. Weekly full backups with daily incremental stored on a NAS drive

Correct answer: B

Explanation

The correct answer is B because daily full backups ensure a complete snapshot of the data is available for recovery, minimizing data loss. In contrast, options A, C, and D either lack the frequency or the comprehensiveness necessary to meet stringent RPOs and RTOs, potentially leading to greater data loss during a ransomware incident.