Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home ISACA CDPSE

ISACA CDPSE Exam Practice Questions (P. 4)

  • Full Access (374 questions)
  • One Year of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #31
Which of the following scenarios poses the GREATEST risk to an organization from a privacy perspective?
  1. A
    The organization lacks a hardware disposal policy.
  2. B
    Emails are not consistently encrypted when sent internally.
  3. C
    Privacy training is carried out by a service provider.
  4. D
    The organization’s privacy policy has not been reviewed in over a year.

Correct Answer:
D

Question #32
Within a business continuity plan (BCP), which of the following is the MOST important consideration to ensure the ability to restore availability and access to personal data in the event of a data privacy incident?
  1. A
    Offline backup availability
  2. B
    Recovery time objective (RTO)
  3. C
    Recovery point objective (RPO)
  4. D
    Online backup frequency

Correct Answer: C ?️

Question #33
In which of the following should the data record retention period be defined and established?
  1. A
    Data record model
  2. B
    Data recovery procedures
  3. C
    Data quality standard
  4. D
    Data management plan

Correct Answer:
D

Question #34
When tokenizing credit card data, what security practice should be employed with the original data before it is stored in a data lake?
  1. A
    Encoding
  2. B
    Backup
  3. C
    Encryption
  4. D
    Classification

Correct Answer:
C

Question #35
Which key stakeholder within an organization should be responsible for approving the outcomes of a privacy impact assessment (PIA)?
  1. A
    Data custodian
  2. B
    Privacy data analyst
  3. C
    Data processor
  4. D
    Data owner

Correct Answer:
D

Question #36
Which of the following is the best reason for a health organization to use desktop virtualization to implement stronger access control to systems containing patient records?
  1. A
    Limited functions and capabilities of a secured operating environment
  2. B
    Monitored network activities for unauthorized use
  3. C
    Improved data integrity and reduced effort for privacy audits
  4. D
    Unlimited functionalities and highly secured applications

Correct Answer:
B

Question #37
What is the BEST way for an organization to maintain the effectiveness of its privacy breach incident response plan?
  1. A
    Require security management to validate data privacy security practices.
  2. B
    Involve the privacy office in an organizational review of the incident response plan.
  3. C
    Hire a third party to perform a review of data privacy processes.
  4. D
    Conduct annual data privacy tabletop exercises.

Correct Answer:
B

Question #38
Which of the following is MOST important when developing an organizational data privacy program?
  1. A
    Obtaining approval from process owners
  2. B
    Profiling current data use
  3. C
    Following an established privacy framework
  4. D
    Performing an inventory of all data

Correct Answer:
B

Question #39
Which of the following should be considered personal information?
  1. A
    Biometric records
  2. B
    Company address
  3. C
    University affiliation
  4. D
    Age

Correct Answer:
A

Question #40
Which of the following should an IT privacy practitioner do FIRST following a decision to expand remote working capability to all employees due to a global pandemic?
  1. A
    Evaluate the impact resulting from this change.
  2. B
    Revisit the current remote working policies.
  3. C
    Implement a virtual private network (VPN) tool.
  4. D
    Enforce multi-factor authentication for remote access.

Correct Answer:
B

Previous Questions Next Questions

All Pages