CompTIA Security+ 5.4 Program Management/Oversight – Compliance

Posted by:

|

On:

|

0%

Compliance

1 / 25

A company operating in the European Union has discovered a data breach affecting customer personal information. According to GDPR, within what timeframe must the company notify the relevant supervisory authority?

2 / 25

An organization is preparing for a compliance audit and needs to demonstrate proper management of third-party vendor access to its systems. Which of the following actions provides the STRONGEST evidence of compliance in this area?

3 / 25

An organization is preparing for a PCI DSS compliance audit and needs to demonstrate proper management of cardholder data. Which of the following actions provides the STRONGEST evidence of compliance in this area?

4 / 25

An organization is implementing a new data loss prevention (DLP) system to improve its compliance posture. Which of the following should be the FIRST step in configuring the DLP system?

5 / 25

An organization is implementing a new automated compliance monitoring system. Which of the following metrics would be MOST valuable in assessing the effectiveness of this system?

6 / 25

A company is preparing for a SOC 2 Type II audit and needs to demonstrate compliance with the security principle. Which of the following controls would provide the STRONGEST evidence of compliance with this principle?

7 / 25

An organization is preparing for a compliance audit and needs to demonstrate proper management of third-party vendor access to its systems. Which of the following actions provides the STRONGEST evidence of compliance in this area?

8 / 25

An organization is preparing for a compliance audit and needs to demonstrate proper management of user access rights. Which of the following actions provides the STRONGEST evidence of compliance in this area?

9 / 25

A financial institution is implementing a new online banking platform. Which of the following compliance standards should be the PRIMARY focus during the development and implementation process?

10 / 25

An organization is implementing a new change management process to improve its compliance posture. Which of the following should be the FIRST step in this process?

11 / 25

A healthcare provider is implementing a new electronic health record (EHR) system and needs to ensure HIPAA compliance. Which of the following should be the FIRST step in the compliance process?

12 / 25

A company operating in the European Union has discovered a data breach affecting customer personal information. According to GDPR, within what timeframe must the company notify the relevant supervisory authority?

13 / 25

A financial institution is implementing a new online banking platform. Which of the following compliance standards should be the PRIMARY focus during the development and implementation process?

14 / 25

An organization is implementing a new identity and access management (IAM) system to improve its compliance posture. Which of the following principles should be the PRIMARY focus when configuring user access rights?

15 / 25

An organization is implementing a new data classification policy to improve its compliance posture. Which of the following data types should be given the HIGHEST level of protection under this policy?

16 / 25

An organization is implementing a new data loss prevention (DLP) system to improve its compliance posture. Which of the following should be the FIRST step in configuring the DLP system?

17 / 25

An organization is preparing for a compliance audit and needs to demonstrate proper management of user access rights. Which of the following actions provides the STRONGEST evidence of compliance in this area?

18 / 25

A healthcare provider is implementing a new electronic health record (EHR) system and needs to ensure HIPAA compliance. Which of the following should be the FIRST step in the compliance process?

19 / 25

An organization is implementing a new identity and access management (IAM) system to improve its compliance posture. Which of the following principles should be the PRIMARY focus when configuring user access rights?

20 / 25

A healthcare organization is implementing a new remote patient monitoring system. Which of the following compliance considerations is MOST critical for this implementation?

21 / 25

A company is implementing a new data classification policy to improve its compliance posture. Which of the following should be the FIRST step in this process?

22 / 25

A multinational corporation is implementing a new global HR system. Which of the following is the MOST important compliance consideration for this implementation?

23 / 25

A company is developing a mobile application that will collect and process user location data. Which of the following is the MOST critical compliance requirement to address in the app’s design?

24 / 25

An organization is implementing a new log management system to improve its compliance posture. Which of the following log retention practices would BEST support compliance requirements?

25 / 25

An organization is implementing a new data classification policy to improve its compliance posture. Which of the following data types should be given the HIGHEST level of protection under this policy?

Your score is

Exit