Question

While conducting a BIA for a proposed acquisition, the IT integration team found that both companies outsource CRM services to competing and incompatible third-party cloud services. The decision has been made to bring the CRM service in-house, and the IT team has chosen a future solution.

With which of the following should the Chief Information Security Officer (CISO) be MOST concerned?

A. Data remnants
B. Sovereignty
C. Compatible services
D. Storage encryption
E. Data migration
F. Chain of custody

Answer 1

The Chief Information Security Officer (CISO) should be most concerned with data remnants when bringing the CRM service in-house due to the possibility of sensitive data being left behind on third-party cloud services.

Step-by-step explanation:

The Chief Information Security Officer (CISO) should be most concerned with data remnants when bringing the CRM service in-house. Data remnants refer to traces of data that remain on a system even after it has been deleted or removed. Since both companies outsource CRM services to competing and incompatible third-party cloud services, there is a possibility that sensitive data could be left behind on those systems. It is crucial for the CISO to ensure that all data remnants are properly identified, secured, and disposed of to minimize the risk of data breaches and unauthorized access.