CAS-004 Security Architecture • Set 2
CAS-004 Security Architecture Practice Test 2 — 15 questions with explanations. Free, no signup.
A security architect is evaluating a new cloud SaaS application that will handle sensitive customer data. The SaaS provider offers a shared responsibility model where the customer is responsible for data classification, access management, and encryption of data at rest using customer-managed keys. The architect must ensure that the organization retains the ability to revoke access to the data if the provider is compromised. Which key management strategy best meets this requirement?