Isaca Certified in Risk and Information Systems Control CRISC Question # 277 Topic 28 Discussion
CRISC Exam Topic 28 Question 277 Discussion:
Question #: 277
Topic #: 28
An organization plans to migrate sensitive information to a public cloud infrastructure. Which of the following is the GREATEST security risk in this scenario?
A.
Data may be commingled with other tenants ' data.
B.
System downtime does not meet the organization ' s thresholds.
C.
The infrastructure will be managed by the public cloud administrator.
D.
The cloud provider is not independently certified.
The greatest security risk in this scenario is that data may be commingled with other tenants’ data on the public cloud infrastructure. Data commingling occurs when data from different sources or customers are mixed together without proper segregation or encryption. This may result in data leakage, unauthorized access, or loss of confidentiality and integrity. Data commingling is a common challenge in public cloud environments, where multiple customers share the same physical resources and network. System downtime, infrastructure management, and cloud provider certification are also potential risks in this scenario, butthey are not as great as data commingling. References = Risk and Information Systems Control Study Manual, 7th Edition, Chapter 5, Section 5.2.1.1, page 2451
1: ISACA Certified in Risk and Information Systems Control (CRISC®) Exam Guide, Answer to Question 638.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit