🔥 3-day streak
ISC2 CCSP — Certified Cloud Security Professional45 / 124
Question 45 of 124
A financial services company running its trading platform in a public IaaS environment discovers evidence of a potential insider fraud incident. Legal counsel instructs the cloud security team to preserve all relevant digital evidence for a possible court case. Some critical evidence resides in provider-managed logs (e.g., hypervisor and storage-layer activity) that the customer cannot directly access. What is the MOST appropriate action for the security team to ensure this evidence is admissible and properly preserved?
Reviewed for accuracy · Report an issueNext question