Certified SOC Analyst (CSA v2) — Question 5

Daniel Clark, a cybersecurity specialist working in the Cloud SOC for a government agency, is responsible for ensuring secure access to cloud applications while maintaining compliance with regulatory frameworks. His team needs a security solution that can enforce access policies to prevent unauthorized access to cloud based applications, monitor and restrict data sharing within SaaS, PaaS, and IaaS environments, ensure compliance with government regulations for data security and privacy, and apply security controls to prevent sensitive data exposure in the cloud. To achieve these objectives, the team has implemented a security technology that governs control over cloud resources, applies security policies, and protects sensitive cloud-stored data. Which Cloud SOC technology is Daniel’s team using?

Answer options

• A. Cloud Security Posture Management
• B. Cloud-native anomaly detection
• C. Cloud Workload Protection Platform
• D. Cloud Access Security Broker

Correct answer: D

Explanation

The correct answer is D, Cloud Access Security Broker, as it specifically focuses on enforcing access policies, monitoring data sharing, and ensuring compliance with security regulations in cloud environments. Options A, B, and C do not provide the same level of control over access and data sharing that is needed for the outlined responsibilities.