🔥 3-day streak
CompTIA SecurityX (CAS-005)120 / 120
Question 120 of 120

A financial services company is implementing a zero trust architecture. Users connect from managed laptops and unmanaged personal devices to a mix of SaaS applications and internally hosted microservices. The security architect wants a design where access decisions are evaluated centrally using identity, device posture, and contextual risk signals, but enforcement happens as close as possible to each protected resource to prevent bypass. Which design approach best satisfies these requirements?

Reviewed for accuracy · Report an issue