Jan 17 • 🙋♂️ CISSP
Practice Question!
A global organization implements a new cloud-based Identity as a Service (IDaaS) solution for managing employee access across multiple regions. During implementation, the security architect must ensure compliance with various data privacy regulations while maintaining high availability. Which of the following combinations would BEST address both the compliance and availability requirements?
A) Implement data locality controls to keep PII in specific regions, use multiple identity providers for failover, and enable just-in-time provisioning
B) Deploy a single identity provider with global replication, implement end-to-end encryption, and use SAML for federation
C) Use multiple independent identity providers per region, implement OAuth 2.0, and enable cross-region authentication
D) Deploy a hybrid solution with on-premises identity servers syncing to cloud providers, using regional data centers and active-active configuration
3
4 comments
Practice Question!
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+17
3
+14
4
+12
5
+11
Powered by