CDPSE · Question #330
Which of the following is MOST important to help determine the controls required to secure the servers that support a customer portal?
The correct answer is B. Data classification policy. A data classification policy establishes the sensitivity tiers of data (e.g., public, internal, confidential, restricted) and maps required security controls to each tier. Before deciding what controls are needed to protect customer portal servers, you must know what classificati
Question
Which of the following is MOST important to help determine the controls required to secure the servers that support a customer portal?
Options
- AConfiguration management tool
- BData classification policy
- CPatch management software
- DControl self-assessments (CSAs)
How the community answered
(50 responses)- A6% (3)
- B70% (35)
- C8% (4)
- D16% (8)
Explanation
A data classification policy establishes the sensitivity tiers of data (e.g., public, internal, confidential, restricted) and maps required security controls to each tier. Before deciding what controls are needed to protect customer portal servers, you must know what classification level the data on those servers carries. Configuration management tools (A) and patch management software (C) are operational tools applied after control requirements are defined. CSAs (D) assess existing controls but do not determine what controls are required.
Topics
Community Discussion
No community discussion yet for this question.