CV0-004
Security
hard
Question 5 of 17

During a cloud security audit, the team discovers that developer IAM accounts have AdministratorAccess policies attached directly. Several developers have recently left the organization, but their accounts have not been deprovisioned. What are the two most critical security remediation actions?

ARemove AdministratorAccess and apply least-privilege role-based policies; immediately disable or delete all former employee accounts
BEnable MFA for all developer accounts and document the current access levels
CMove all developer accounts to a separate VPC
DEncrypt all data in developer storage buckets

More Security Questions

17 questions

Full CompTIA Cloud+ Practice Test

All topics covered

All CompTIA Cloud+ Questions

Browse by topic

Related Questions

Which security framework requires organizations to protect cardholder data and is commonly reference...

easy

A cloud security team discovers that container images in their registry contain outdated libraries w...

medium

An organization requires all users to prove their identity before accessing cloud resources, and acc...

medium

A cloud security engineer is implementing controls to ensure that an attacker who compromises a cont...

medium

A cloud architect is designing a multi-tenant SaaS application that must achieve SOC 2 Type II compl...

hard
View all Security questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account