nerdexam
ExamsCERTIFIED-IN-CYBERSECURITYQuestions#161
(ISC)2(ISC)2

CERTIFIED-IN-CYBERSECURITY · Question #161

CERTIFIED-IN-CYBERSECURITY Question #161: Real Exam Question with Answer & Explanation

The correct answer is B: Regulations. Regulations are created by governments or national authorities, and often lead to financial fines for infringement. For example, the EU's GDPR prescribes penalties of up to 2% of annual revenue. Standards are created by governing or professional bodies (not by governments), and t

Security Principles

Question

In the event of non-compliance, which of these can have considerable financial consequences for an organization?

Options

  • AStandards
  • BRegulations
  • CPolicies
  • DGuidelines

Explanation

Regulations are created by governments or national authorities, and often lead to financial fines for infringement. For example, the EU's GDPR prescribes penalties of up to 2% of annual revenue. Standards are created by governing or professional bodies (not by governments), and thus are not legally enforceable. Regulations are mandatory, while standards are voluntary. Policies and guidelines are internal to organizations, and are therefore not subject to financial penalties (see ISC2 Study Guide Chapter 1, Module 4).

Topics

#Regulations#Compliance#Financial Consequences#Governance

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CERTIFIED-IN-CYBERSECURITY PracticeBrowse All CERTIFIED-IN-CYBERSECURITY Questions