An organization's data destruction guidelines should require hard drives containing personal data to go through which of the following processes prior to being crushed?

• A.Remote partitioning
• B.Hammer strike
• C.Degaussing
• D.Low-level formatting

Comment: *

Name: *

Email: *

Verification: *

During the design of a role-based user access model for a new application, which of the following principles is MOST important to ensure data privacy is protected?

• A.Segregation of duties
• B.Need-to-know basis
• C.Two-person rule
• D.Unique user credentials

Comment: *

Name: *

Email: *

Verification: *

Which of the following MOST effectively protects against the use of a network sniffer?

• A.A honeypot environment
• B.Transport layer encryption
• C.An intrusion detection system (IDS)
• D.Network segmentation

Comment: *

Name: *

Email: *

Verification: *

An organization has a policy requiring the encryption of personal data if transmitted through email. Which of the following is the BEST control to ensure the effectiveness of this policy?

• A.Conduct regular control self-assessments (CSAs).
• B.Provide periodic user awareness training on data encryption.
• C.Enforce annual attestation to policy compliance.
• D.Implement a data loss prevention (DLP) tool.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important when developing an organizational data privacy program?

• A.Following an established privacy framework
• B.Profiling current data use
• C.Obtaining approval from process owners
• D.Performing an inventory of all data

Comment: *

Name: *

Email: *

Verification: *