Free Access to ISACA.CDPSE.v2024-03-22.q117 with Valid Practice Test (Page 9)

Question 36

An organization wants to ensure that endpoints are protected in line with the privacy policy. Which of the following should be the FIRST consideration?

A.Detecting malicious access through endpoints
B.Implementing network traffic filtering on endpoint devices
C.Managing remote access and control
D.Hardening the operating systems of endpoint devices

Question 37

A new marketing application needs to use data from the organization's customer database. Prior to the application using the data, which of the following should be done FIRST?

A.Ensure the data loss prevention (DLP) tool is logging activity.
B.De-identify all personal data in the database.
C.Determine what data is required by the application.
D.Renew the encryption key to include the application.

Question 38

Which of the following is the GREATEST concern for an organization subject to cross-border data transfer regulations when using a cloud service provider to store and process data?

A.The service provider has denied the organization's request for right to audit.
B.Personal data stored on the cloud has not been anonymized.
C.The extent of the service provider's access to data has not been established.
D.The data is stored in a region with different data protection requirements.

Question 39

Which of the following should be established FIRST before authorizing remote access to a data store containing personal data?

A.Multi-factor authentication
B.Network security standard
C.Virtual private network (VPN)
D.Privacy policy

Question 40

Which of the following is the BEST approach to minimize privacy risk when collecting personal data?

A.Collect data through a secure organizational web server.
B.Collect only the data necessary to meet objectives.
C.Aggregate the data immediately upon collection.
D.Use a third party to collect, store, and process the data.

Question 36

Question 37

Question 38

Question 39

Question 40

Download PDF File