nerdexam
Isaca

CDPSE · Question #263

Which of the following is the BEST example of risk-based data protection?

The correct answer is B. Data segmentation. Risk-based data protection means applying controls proportionate to the sensitivity and risk level of different data sets-not treating all data uniformly. Data segmentation achieves this by separating data into groups based on classification and risk level, allowing the organizat

Privacy Architecture

Question

Which of the following is the BEST example of risk-based data protection?

Options

  • AData encryption
  • BData segmentation
  • CTransit-layer encryption
  • DData partitioning

How the community answered

(33 responses)
  • A
    3% (1)
  • B
    85% (28)
  • C
    3% (1)
  • D
    9% (3)

Explanation

Risk-based data protection means applying controls proportionate to the sensitivity and risk level of different data sets-not treating all data uniformly. Data segmentation achieves this by separating data into groups based on classification and risk level, allowing the organization to apply stronger controls (access restrictions, encryption, monitoring) specifically to high-risk personal data while applying proportionate, lighter controls to lower-risk data. Encryption (A) and transit-layer encryption (C) are uniform technical controls applied regardless of risk tier. Data partitioning (D) is typically a performance or administrative technique, not a risk-stratified protection strategy. Segmentation inherently embodies the risk-based approach.

Topics

#Risk-based data protection#Data segmentation#Privacy controls#Data classification

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice