nerdexam
Isaca

CDPSE · Question #330

Which of the following is MOST important to help determine the controls required to secure the servers that support a customer portal?

The correct answer is B. Data classification policy. A data classification policy establishes the sensitivity tiers of data (e.g., public, internal, confidential, restricted) and maps required security controls to each tier. Before deciding what controls are needed to protect customer portal servers, you must know what classificati

Privacy Governance

Question

Which of the following is MOST important to help determine the controls required to secure the servers that support a customer portal?

Options

  • AConfiguration management tool
  • BData classification policy
  • CPatch management software
  • DControl self-assessments (CSAs)

How the community answered

(50 responses)
  • A
    6% (3)
  • B
    70% (35)
  • C
    8% (4)
  • D
    16% (8)

Explanation

A data classification policy establishes the sensitivity tiers of data (e.g., public, internal, confidential, restricted) and maps required security controls to each tier. Before deciding what controls are needed to protect customer portal servers, you must know what classification level the data on those servers carries. Configuration management tools (A) and patch management software (C) are operational tools applied after control requirements are defined. CSAs (D) assess existing controls but do not determine what controls are required.

Topics

#Data Classification#Security Controls#Privacy Governance#Risk Assessment

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice