Chapter 5

Question 1

What can bd used to protect data in thr cloud and provide DLP features

Answer 1

Cloud access security broker (CASB)

Question 2

What’s the difference between pseudonormalisation and tokenisation

Answer 2

Pseudonormalisation substitutes data with other data to make itess confidential such as removing PII

Tokenisation is typically used for credit card transactions the organisations and hold the actual credit card details

Question 3

What’s the difference between scoping and Tayloring 

Answer 3

Tailoring is modifying a list of security controls to ensure they line with the mission of the organisation
Tailoring include scoping scoping refers to reviewing a list of baseline security controls and selecting only those that apply to the IT system

Question 4

What are the different types of data roles

Answer 4

Data owners are responsible for classifying labelling and protecting data
A data controller decide what data to process and directs the data processor to process the data
Administrators grant access to data based on the guidelines provided by the data owner
A custodian is responsible for the task of implementing the protections defined by the security policy and senior management
A business owner is a senior manager who owns the process to ensure the system provides value to the organisation

Question 5

What system can be used to idenify data based on pattens amd classified data from leaving an organisation

Answer 5

data loss prevention (DLP)