SY0-501 · Question #61
SY0-501 Question #61: Real Exam Question with Answer & Explanation
The correct answer is C: Store customer data based on national borders, ensure end-to end encryption between ATMs,. To provide the most complete data protection for a multinational banking corporation, it is essential to implement both data residency based on national borders and end-to-end encryption for all critical communication paths.
Question
The Chief Security Officer (CISO) at a multinational banking corporation is reviewing a plan to upgrade the entire corporate IT infrastructure. The architecture consists of a centralized cloud environment hosting the majority of data, small server clusters at each corporate location to handle the majority of customer transaction processing, ATMs, and a new mobile banking application accessible from smartphones, tablets, and the Internet via HTTP. The corporation does business having varying data retention and privacy laws. Which of the following technical modifications to the architecture and corresponding security controls should be implemented to provide the MOST complete protection of data?
Options
- ARevoke exiting root certificates, re-issue new customer certificates, and ensure all
- BEnsure all data is encryption according to the most stringent regulatory guidance applicable,
- CStore customer data based on national borders, ensure end-to end encryption between ATMs,
- DInstall redundant servers to handle corporate customer processing, encrypt all customer data
Explanation
To provide the most complete data protection for a multinational banking corporation, it is essential to implement both data residency based on national borders and end-to-end encryption for all critical communication paths.
Common mistakes.
- A. Revoking and re-issuing certificates primarily addresses certificate lifecycle management and trust but does not directly implement data residency requirements or comprehensive data-at-rest encryption.
- B. While ensuring data encryption is crucial, this choice overlooks the critical requirement for data residency based on national borders to comply with varying international data retention and privacy laws.
- D. Installing redundant servers improves availability and disaster recovery, but it does not address the fundamental requirements for data residency to comply with varying national privacy laws.
Concept tested. Data residency, end-to-end encryption, regulatory compliance
Reference. https://learn.microsoft.com/en-us/compliance/regulatory/data-residency-overview
Community Discussion
No community discussion yet for this question.