CompTIA Updated CLO-002 Exam Questions and Answers by marco

Geo-redundancy and backup are two methods that can ensure the availability of data that is accessed across multiple sites. Geo-redundancy is the practice of storing data in more than one geographic location, such as different regions, countries, or continents. This can improve the data availability by reducing the impact of natural disasters, network failures, or malicious attacks that may affect one site. Geo-redundancy can also improve the data performance by allowing users to access the data from the nearest or fastest site. Backup is the process of creating and storing copies of data that can be used to restore the original data in case of data loss, corruption, or deletion. Backup can ensure the data availability by providing a way to recover the data from a previous state, such as before a hardware failure, software error, or human error. Backup can also protect the data from accidental or intentional modifications that may compromise its integrity or security.

Geo-redundancy and backup are different from other options, such as auto-scaling, provisioning, locality, and zones. Auto-scaling is the ability of a cloud service to automatically adjust the amount of resources allocated to a workload based on the demand or usage. Provisioning is the process of allocating and configuring the resources needed to run a cloud service or application. Locality is the principle of storing data close to where it is used, such as in the same region, country, or jurisdiction. Zones are logical or physical subdivisions of a cloud region that provide isolation and redundancy for the cloud resources. While these options may also affect the data availability, they do not directly address the data access across multiple sites, which is the focus of the question. References: Extending a Datastore Across Two Sites with Stretched Clusters, SQL Server Multi-Subnet Clustering - SQL Server Always On, What Is a Distributed Database? {Features, Benefits & Drawbacks}, Cloud Computing Availability - CompTIA Cloud Essentials+ (CLO-002) Cert Guide

Redundancy is a term that describes the approach of replicating cloud resources in several different geographic locations. Redundancy can increase the availability, reliability, and performance of cloud services by providing backup or alternative resources in case of failures, disasters, or high demand. Redundancy can also reduce latency by serving users from the nearest location. Redundancy can be implemented at different levels, such as data, network, server, or application. For example, a geo-distributed database is a type of redundancy that offers asynchronous replication across two data centers or cloud regions1. Redundancy is different from disaster recovery, deduplication, and data sovereignty, which are other terms related to cloud computing. Disaster recovery is a term that describes the process of restoring normal operations after a disaster or disruption. Disaster recovery can involve using redundant resources, but it is not the same as redundancy. Deduplication is a term that describes the technique of eliminating redundant copies of data from a storage device, which can reduce the storage space required and improve the efficiency of the storage system. Deduplication does not involve replicating cloud resources in different locations, but rather consolidating and removing duplicates. Data sovereignty is a term that describes the legal and regulatory aspects of data storage and processing in different geographic locations. Data sovereignty can affect the choice of cloud regions and providers, as some countries or regions may have specific laws or regulations that govern the access, transfer, and protection of data. Data sovereignty does not imply redundancy, but rather compliance. Therefore, the correct term for replicating cloud resources in several different geographic locations is redundancy. References: Geography and regions | Documentation | Google Cloud, What is Database Geo-Distribution? - Yugabyte, Georedundancy: geographical redundancy | Stackscale.

Incident response is the policy that defines how an organization responds to a security breach or cyberattack that affects its data, systems, or operations. It is most critical for being in compliance with regulatory agencies because it helps to minimize the impact of the incident, preserve the evidence, and restore the normal operations as soon as possible. Regulatory agencies often require organizations to report any incidents that compromise the confidentiality, integrity, or availability of the data they handle, especially if it involves personal or sensitive information. Failure to comply with these reporting obligations can result in fines, penalties, or legal actions. Therefore, having an effective incident response policy is essential for ensuring compliance and protecting the reputation of the organization123. References: CompTIA Cloud Essentials+ Certification Study Guide, Second Edition (Exam CLO-002), Chapter 3: Security in the Cloud, pages 75-76.

 Hardening is the concept that will help lower the attack surface after unauthorized user-level access. Hardening is the process of securing a system by reducing its vulnerability to attacks. Hardening involves applying patches, updates, and configuration changes to eliminate or mitigate known weaknesses. Hardening also involves disabling or removing unnecessary services, features, and accounts that could be exploited by attackers. Hardening can help lower the attack surface by reducing the amount of code running, the number of entry points available, and the potential damage that can be caused by unauthorized access. References: CompTIA Cloud Essentials+ CLO-002 Study Guide, Chapter 4: Cloud Security, Section 4.2: Cloud Security Concepts, Page 153.