nerdexam
ExamsSY0-701Questions#340
CompTIACompTIA

SY0-701 · Question #340

SY0-701 Question #340: Real Exam Question with Answer & Explanation

The correct answer is C: Due diligence. Due diligence refers to the process of researching and understanding the laws, regulations, and best practices that govern information security within a specific industry. Organizations are required to conduct due diligence to ensure compliance with legal and regulatory requireme

Submitted by naveen.iyer· Mar 6, 2026Security program management and oversight

Question

Which of the following best describes the practice of researching laws and regulations related to information security operations within a specific industry?

Options

  • ACompliance reporting
  • BGDPR
  • CDue diligence
  • DAttestation

Explanation

Due diligence refers to the process of researching and understanding the laws, regulations, and best practices that govern information security within a specific industry. Organizations are required to conduct due diligence to ensure compliance with legal and regulatory requirements, which helps mitigate risks and avoid penalties. Compliance reporting involves generating reports to demonstrate adherence to legal or regulatory GDPR is a specific regulation governing data privacy in the EU, not a general practice of researching laws. Attestation is a formal declaration that an organization is compliant with a set of standards but is not the act of researching the laws.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-701 PracticeBrowse All SY0-701 Questions