CAS-003 · Question #33
CAS-003 Question #33: Real Exam Question with Answer & Explanation
The correct answer is A: Accept the risk, reverse the settings for the remote location, and have the remote location file a. The legacy storage array cannot support SMB digital signing, which is now a mandatory policy. Option A is correct because it balances operational necessity against security policy through a formal exception process. Reversing the settings only for the affected remote location min
Question
Options
- AAccept the risk, reverse the settings for the remote location, and have the remote location file a
- BAccept the risk for the remote location, and reverse the settings indefinitely since the legacy
- CMitigate the risk for the remote location by suggesting a move to a cloud service provider. Have
- DAvoid the risk, leave the settings alone, and decommission the legacy storage device
Explanation
The legacy storage array cannot support SMB digital signing, which is now a mandatory policy. Option A is correct because it balances operational necessity against security policy through a formal exception process. Reversing the settings only for the affected remote location minimizes the scope of exposure, while requiring a formal risk acceptance document (exception filing) ensures the deviation is documented, reviewed, and tracked - rather than being an informal or invisible policy violation. This is a pragmatic, time-bounded approach appropriate for legacy systems. Option B is worse because it reverses settings 'indefinitely' with no accountability or plan to remediate. Option C (migrating to cloud) may eventually be the right answer but is disproportionately disruptive for the immediate problem. Option D (decommissioning the legacy device) is too drastic when the data is described as time-sensitive and actively used.
Community Discussion
No community discussion yet for this question.