nerdexam
PeopleCert

ITIL · Question #25

Which process is responsible for the availability, confidentiality and integrity of data?

The correct answer is D. Information security management. Information security management is the ITIL process specifically responsible for protecting data across the CIA triad - confidentiality, integrity, and availability.

Processes

Question

Which process is responsible for the availability, confidentiality and integrity of data?

Options

  • AService catalogue management
  • BService asset and configuration management
  • CChange management
  • DInformation security management

How the community answered

(41 responses)
  • A
    2% (1)
  • B
    2% (1)
  • C
    5% (2)
  • D
    90% (37)

Why each option

Information security management is the ITIL process specifically responsible for protecting data across the CIA triad - confidentiality, integrity, and availability.

AService catalogue management

Service catalogue management maintains records of available IT services and their details, not data security properties.

BService asset and configuration management

Service asset and configuration management tracks CIs and their relationships, not data confidentiality or integrity.

CChange management

Change management controls the lifecycle of changes to reduce risk, but it does not own responsibility for the CIA triad of data.

DInformation security managementCorrect

Information security management is explicitly defined in ITIL as the process that ensures the confidentiality, integrity, and availability (CIA triad) of an organization's information assets. It sets security policies, manages risks, and ensures controls are in place across the IT infrastructure to protect data from unauthorized access, modification, or loss.

Concept tested: ITIL information security management CIA triad

Source: https://www.axelos.com/certifications/itil-service-management/itil-4-foundation

Topics

#information security management#CIA triad#confidentiality#data integrity

Community Discussion

No community discussion yet for this question.

Full ITIL Practice