nerdexam
ExamsSSCPQuestions#1143
(ISC)2(ISC)2

SSCP · Question #1143

SSCP Question #1143: Real Exam Question with Answer & Explanation

The correct answer is B: Confidentiality. The main goals of an information security program are to ensure the Confidentiality, Integrity, and Availability (CIA triad) of data and systems.

Submitted by andres_qro· Apr 18, 2026Security Concepts and Practices

Question

What are the main goals of an information security program? (Choose all that apply)

Options

  • AComplete Security
  • BConfidentiality
  • CAvailability
  • DIntegrity of data
  • EEase of Use

Explanation

The main goals of an information security program are to ensure the Confidentiality, Integrity, and Availability (CIA triad) of data and systems.

Common mistakes.

  • A. Complete Security is an unachievable goal in information security, as all risks cannot be entirely eliminated.
  • E. While ease of use is a desirable design principle, it is a secondary consideration often balanced against security requirements and is not one of the fundamental pillars of information security itself.

Concept tested. CIA triad (Confidentiality, Integrity, Availability)

Reference. https://learn.microsoft.com/en-us/azure/security/fundamentals/confidentiality-integrity-availability

Topics

#Information Security Goals#CIA Triad#Confidentiality#Integrity#Availability

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SSCP PracticeBrowse All SSCP Questions