CAS-002 · Question #31
CAS-002 Question #31: Real Exam Question with Answer & Explanation
The correct answer is B: Ensure logins are over an encrypted channel and obtain an NDA and an SLA from the. When moving email to the cloud, risk mitigation requires both technical and contractual controls. Ensuring logins occur over an encrypted channel (e.g., TLS/HTTPS) protects credentials and data in transit. Obtaining an NDA (Non-Disclosure Agreement) legally binds the cloud provid
Question
Options
- ARemind users that all emails with sensitive information need be encrypted and physically
- BEnsure logins are over an encrypted channel and obtain an NDA and an SLA from the
- CEnsure logins are over an encrypted channel and remind users to encrypt all emails that
- DObtain an NDA from the cloud provider and remind users that all emails with sensitive
Explanation
When moving email to the cloud, risk mitigation requires both technical and contractual controls. Ensuring logins occur over an encrypted channel (e.g., TLS/HTTPS) protects credentials and data in transit. Obtaining an NDA (Non-Disclosure Agreement) legally binds the cloud provider to keep organizational data confidential, while an SLA (Service Level Agreement) formally defines uptime, availability, and performance expectations. Together, these address both the technical exposure and the legal/contractual accountability gap that cloud adoption introduces. The other options are incomplete - they omit either the contractual (NDA/SLA) or the encryption component, leaving significant residual risk.
Community Discussion
No community discussion yet for this question.