A security specialist is evaluating a company's procedures for maintaining secure backups of sensitive data. They find that: encryption is enforced for all backups; access to backup media requires multi-factor authentication (MFA); all backup activities are logged and audited; and backup data can be deleted by an administrator. Based on this information, what should the specialist recommend?
Practise this SecurityX Test Prep question free, then download the PDF, watch the video walkthrough, or unlock timed mock exams for the full web bank.
CDisallow an administrator from deleting backup data
DAllow backup data to be accessed without MFA
✓ Correct answer: C. Disallow an administrator from deleting backup dataDisallow an administrator from deleting backup data. Implementing strong security controls, such as disallowing any user (including administrators) from deleting backup data, is critical. Enforcing MFA, encryption, and logging and auditing activities are essential practices to ensure secure backups.
Keep practising. Use the free SecurityX Test Prep PDF, watch the YouTube walkthrough, or unlock all 10 web questions with timed mock exams.