Did the CISO address all the legal requirements in this situation?

CISSP

Last Post by Randolph 2 years ago

1 Posts

1 Users

0 Likes

155 Views

RSS

Randolph

(@soquirandolph)

Noble Member

Joined: 2 years ago

Posts: 729

Topic starter 12/09/2022 12:48 pm

A financial company has decided to move its main business application to the Cloud. The legal department objects, arguing that the move of the platform should comply with several regulatory obligations such as the General Data Protection (GDPR) and ensure data confidentiality. The Chief Information Security Officer (CISO) says that the cloud provider has met all regulations requirements and even provides its own encryption solution with internally-managed encryption keys to address data confidentiality.

Did the CISO address all the legal requirements in this situation?

A . No, because the encryption solution is internal to the cloud provider.
B . Yes, because the cloud provider meets all regulations requirements.
C . Yes, because the cloud provider is GDPR compliant.
D . No, because the cloud provider is not certified to host government data.

Show Answer Hide Answer

Suggested Answer: B

Quote

Topic Tags

CISSP Certifications

Latest ISC CISSP Dumps Valid Version

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PDF

Forum Jump:

Previous Topic

Next Topic