🔥 3-day streak
ISC2 CCSP — Certified Cloud Security Professional73 / 124
Question 73 of 124

A cloud security architect is designing controls for the management plane of an IaaS environment. Administrators currently connect directly to the provider's web console and API endpoints using long-lived static credentials from their laptops, which may be on untrusted networks. Compromise of a single administrator account would allow an attacker to spin up, delete, or reconfigure the entire virtual infrastructure. Which control set most directly reduces the risk of management-plane compromise?

Reviewed for accuracy · Report an issueNext question