Free COMPTIA Cloud+ CV0-004 Actual Exam Questions - Question 12 Discussion

B works because it includes strict access control plus consistent monitoring.

I’d rule out anything that doesn’t clearly support continuous monitoring since low risk tolerance means they can’t miss anomalies. So options without integrated anomaly detection or logging should be off the table.

Option D seems right since it handles both secure access and anomaly detection well.

I’m focusing on the need for minimizing user login while still requiring secondary authentication. That suggests a single sign-on approach combined with MFA, which narrows it down to controls that support this seamlessly. Also, since risk tolerance is low, the solution must include real-time anomaly detection to catch anything suspicious immediately. So, I’d exclude anything that only offers basic monitoring or no secondary auth at all. The best fit should be a control point that integrates secure remote access with continuous user tracking and strong second-factor checks.

I think option D fits well because it combines secure connectivity with continuous monitoring and includes secondary authentication, which is a must given the low risk tolerance. Also, since the business is highly regulated, having centralized identity management that tracks user actions in real time is crucial. Options A and B seem to lack some of these monitoring features, and C doesn’t fully cover secondary authentication as clearly. So, D covers all bases: secure access, activity tracking, anomaly detection, and MFA.

I’d rule out anything without continuous monitoring since tracking activity is key here. So, the control point with real-time anomaly detection seems essential, probably pointing to option C or D over A or B.

Looks like option B covers secure access and monitoring best.