A financial company has decided to move its main business application to the Cloud. The legal department objects, arguing that the move of the platform should comply with several regulatory obligations such as the General Data Protection (GDPR) and ensure data confidentiality. The Chief Information Security Officer (CISO) says that the cloud provider has met all regulations requirements and even provides its own encryption solution with internally-managed encryption keys to address data confidentiality. Did the CISO address all the legal requirements in this situation?
A) No, because the encryption solution is internal to the cloud provider.
B) Yes, because the cloud provider meets all regulations requirements.
C) Yes, because the cloud provider is GDPR compliant.
D) No, because the cloud provider is not certified to host government data.
Correct Answer:
Verified
Q72: Which of the following is the MOST
Q73: Change management policies and procedures belong to
Q74: A security professional should ensure that clients
Q75: Why are packet filtering routers used in
Q76: A Virtual Machine (VM) environment has five
Q78: What is the expected outcome of security
Q79: Users require access rights that allow them
Q80: An organization lacks a data retention policy.
Q81: Which technique can be used to make
Q82: The organization would like to deploy an
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents