CISSP · Question #200
CISSP Question #200: Real Exam Question with Answer & Explanation
The correct answer is A: Ineffective data classification. The most likely cause of a non-malicious data breach when the source of the data breach was an un-marked file cabinet containing sensitive documents is ineffective data classification. Data classification is a process of assigning labels or categories to data based on their sensi
Question
Which of the following is the MOST likely cause of a non-malicious data breach when the source of the data breach was an un-marked file cabinet containing sensitive documents?
Options
- AIneffective data classification
- BLack of data access controls
- CIneffective identity management controls
- DLack of Data Loss Prevention (DLP) tools
Explanation
The most likely cause of a non-malicious data breach when the source of the data breach was an un-marked file cabinet containing sensitive documents is ineffective data classification. Data classification is a process of assigning labels or categories to data based on their sensitivity, value, and criticality. Data classification can help protect the data from unauthorized access, disclosure, or misuse, as well as comply with the legal and regulatory requirements. Data classification can also guide the implementation of appropriate security controls and measures for different types of data, such as encryption, access control, retention, or disposal. Ineffective data classification can result in data being stored, handled, or transmitted without proper protection or awareness, which can lead to data breaches, even if they are not intentional or malicious
Topics
Community Discussion
No community discussion yet for this question.