ITIL · Question #25
Which process is responsible for the availability, confidentiality and integrity of data?
The correct answer is D. Information security management. Information security management is the ITIL process specifically responsible for protecting data across the CIA triad - confidentiality, integrity, and availability.
Question
Which process is responsible for the availability, confidentiality and integrity of data?
Options
- AService catalogue management
- BService asset and configuration management
- CChange management
- DInformation security management
How the community answered
(41 responses)- A2% (1)
- B2% (1)
- C5% (2)
- D90% (37)
Why each option
Information security management is the ITIL process specifically responsible for protecting data across the CIA triad - confidentiality, integrity, and availability.
Service catalogue management maintains records of available IT services and their details, not data security properties.
Service asset and configuration management tracks CIs and their relationships, not data confidentiality or integrity.
Change management controls the lifecycle of changes to reduce risk, but it does not own responsibility for the CIA triad of data.
Information security management is explicitly defined in ITIL as the process that ensures the confidentiality, integrity, and availability (CIA triad) of an organization's information assets. It sets security policies, manages risks, and ensures controls are in place across the IT infrastructure to protect data from unauthorized access, modification, or loss.
Concept tested: ITIL information security management CIA triad
Source: https://www.axelos.com/certifications/itil-service-management/itil-4-foundation
Topics
Community Discussion
No community discussion yet for this question.