Data collected by a third-party vendor and provided back to the organization may not be protected according to the organization's privacy notice. Which of the following is the BEST way to address this concern?

• A.Re-assess the information security requirements.
• B.Obtain independent assurance of current practices.
• C.Review the privacy policy.
• D.Validate contract compliance.

Comment: *

Name: *

Email: *

Verification: *

Which of the following system architectures BEST supports anonymity for data transmission?

• A.Client-server
• B.Plug-in-based
• C.Peer-to-peer
• D.Front-end

Comment: *

Name: *

Email: *

Verification: *

During the design of a role-based user access model for a new application, which of the following principles is MOST important to ensure data privacy is protected?

• A.Segregation of duties
• B.Unique user credentials
• C.Two-person rule
• D.Need-to-know basis

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST effective remote access model for reducing the likelihood of attacks originating from connecting devices?

• A.Thick client desktop with virtual private network (VPN) connection
• B.Remote wide area network (WAN) links
• C.Thin Client remote desktop protocol (RDP)
• D.Site-to-site virtual private network (VPN)

Comment: *

Name: *

Email: *

Verification: *

When contracting with a Software as a Service (SaaS) provider, which of the following is the MOST important contractual requirement to ensure data privacy at service termination?

• A.Encryption of customer data
• B.Removal of customer data
• C.De-identification of customer data
• D.Destruction of customer data

Comment: *

Name: *

Email: *

Verification: *