13.1.10 Practice Questions

Question 1

Question 1.
Your organization has discovered that an overseas company has reverse-engineered and copied your main product and is now selling a counterfeit version.
Which of the following BEST describes the type of consequence your organization has suffered?
answer
Escalation
Fines
IP theft
Reputation damage

Answer 1

Correct Answer:
IP theft

Question 2

Question 2.
Your organization has suffered a data breach, and it was made public. As a result, stock prices have fallen, as consumers no longer trust the organization.
Which of the following BEST describes the type of consequence your organization has suffered due to the breach?
answer
IP theft
Identity theft
Reputation damage
Notifications

Answer 2

Correct Answer:
Reputation damage

Question 3

Question 3.
What type of data is information that can easily be understood and interpreted without additional processing or translation?
answer
Regulated data
Non-human-readable data
Human-readable data
Trade secrets

Answer 3

Correct Answer:
Human-readable data

Question 4

Question 4.
The IT department of a healthcare provider maintains a database containing personal health information for its patients.
Which classification BEST suits this type of data?

answer
Regulated
Public
Incorrect answer:
Critical
Nonsensitive

Answer 4

Correct Answer:
Regulated

Question 5

Question 5.
The government and military use the following information classification system:
-Unclassified -Sensitive But Unclassified -Confidential - Secret -Top Secret

Keyboard Instructions
Match Group A to Group B

Group A
The lowest level of classified information used by the military. Release of this information could cause damage to military efforts.

If this information is released, it poses grave consequences to national security.

This information can be accessed by the public and poses no security threat.

If this information is disclosed, it could cause some harm, but not a national disaster.

If this information is disclosed, it could cause severe and permanent damage to military actions.

Group B
Sensitive But Unclassified
Secret
Confidential
Top Secret
Unclassified

Answer 5

The lowest level of classified information used by the military. Release of this information could cause damage to military efforts.

Confidential
Correct Answer:
~~~~~~~~
If this information is released, it poses grave consequences to national security.

Top Secret
Correct Answer:
~~~~~~~~
This information can be accessed by the public and poses no security threat.
Unclassified
Correct Answer:
~~~~~~~~
If this information is disclosed, it could cause some harm, but not a national disaster.

Sensitive But Unclassified
Correct Answer:
~~~~~~~~
If this information is disclosed, it could cause severe and permanent damage to military actions.

Secret
Correct Answer:

Question 6

Question 6.
A healthcare organization is strengthening its data protection framework to ensure compliance with local and international regulations. One focus area is clearly defining the roles and responsibilities between the data controllers and processors, as this impacts the overall management and protection of sensitive data.
In this scenario, which two statements accurately outline the responsibilities of the data controller and the data processor regarding data protection? (Select two.)

answers
-Data processor–decides the purpose of data processing
-Both roles have the same responsibilities.
-Data controller–determines the purposes for which data is processed
-Data processor–processes data on behalf of the controller
-Data controller–performs day-to-day operations on data

Answer 6

Both roles have the same responsibilities.
Correct Answer:

Data controller–determines the purposes for which data is processed
Correct Answer:

Question 7

Question 7.
An organization evaluates the legal implications of failing to protect privacy data after experiencing a breach.
What level of influence does the GDPR have regarding legal implications?

answer
Global
National
Regional
Local

Answer 7

Correct Answer:
Global

Question 8

Question 8
Which of the following is the LEAST reliable means of cleaning or purging media?

answer
OS low-level formatting
Degaussing
Drive controller hardware-level formatting
Overwriting every sector with alternating 1s and 0s

Answer 8

Correct Answer:
Degaussing

Question 9

Question 9.
When you dispose of a computer or sell used hardware, it is crucial that none of the data on the hard disks can be recovered.
Which of the following actions can you take to ensure that no data is recoverable?
answer
Encrypt all data on the hard disks.
Damage the hard disks so badly that all data remanence is gone.
Reformat all the hard disks in the computer.
Delete all files from all the hard disks in the computer.

Answer 9

Correct Answer:
Damage the hard disks so badly that all data remanence is gone.

Question 10

Question 10.
A financial institution is preparing to decommission a number of its old servers. The servers contain sensitive customer data that needs proper handling to prevent unauthorized access or data breaches.
Which strategy should the institution primarily employ to ensure the data on these servers stays irretrievable?

answer
Carry out a sanitization process that includes multiple passes of overwriting and degaussing.
Use a basic method of overwriting, such as zero filling, once.
Leave the data on the servers, as the system will eventually overwrite it.
Physically destroying the servers is necessary.

Answer 10

Correct Answer:
Carry out a sanitization process that includes multiple passes of overwriting and degaussing.