CERTIFIED-IN-CYBERSECURITY · Question #455
CERTIFIED-IN-CYBERSECURITY Question #455: Real Exam Question with Answer & Explanation
The correct answer is A: More than four. While the exact number may vary depending on the organization's specific needs and capabilities, in general, having more than four classifications is considered difficult to manage due to the increased complexity and resources required (see the ISC2 Study Guide, Chapter 5, Module
Question
How many classifications are typically considered difficult to manage for an organization?
Options
- AMore than four
- BTwo
- CTwo or three
- DLess than four
Explanation
While the exact number may vary depending on the organization's specific needs and capabilities, in general, having more than four classifications is considered difficult to manage due to the increased complexity and resources required (see the ISC2 Study Guide, Chapter 5, Module 1). For example, an organization that has five classifications, such as Public, Internal, Confidential, Secret, and Top Secret, would need to establish and maintain different access controls and handling procedures for each classification. Maintaining such a system can be demanding, making it difficult to manage effectively. Having fewer than four classifications may not provide enough differentiation to adequately protect different levels of sensitive data, but is generally more manageable.
Topics
Community Discussion
No community discussion yet for this question.