LEAD-AUDITOR · Question #1
LEAD-AUDITOR Question #1: Real Exam Question with Answer & Explanation
The correct answer is B. Restricted - to be shared among named individuals. The difference between a restricted and confidential document is that a restricted document is to be shared among named individuals, while a confidential document is to be shared among an authorized group. Restricted and confidential are examples of information classification lev
Question
Options
- ARestricted - to be shared among an authorized group
- BRestricted - to be shared among named individuals
- CRestricted - to be shared among named individuals
- DRestricted - to be shared among named individuals
Explanation
The difference between a restricted and confidential document is that a restricted document is to be shared among named individuals, while a confidential document is to be shared among an authorized group. Restricted and confidential are examples of information classification levels that indicate the sensitivity and value of information and the degree of protection required for it. Restricted documents contain information that could cause serious damage or harm to the organization or its stakeholders if disclosed to unauthorized persons. Therefore, they should only be accessed by specific individuals who have a legitimate need to know and are authorized by the information owner. Confidential documents contain information that could cause damage or harm to the organization or its stakeholders if disclosed to unauthorized persons. Therefore, they should only be accessed by a defined group of people who have a legitimate need to know and are authorized by the information owner. ISO/IEC 27001:2022 requires the organization to classify information in terms of legal requirements, value, criticality and sensitivity to unauthorized disclosure or modification (see clause A.8.2.1).
Community Discussion
No community discussion yet for this question.