CDPSE無料問題集「ISACA Certified Data Privacy Solutions Engineer」

質問 1

Which of the following is the BEST way for senior management to verify the success of its commitment to privacy by design?

（A）Review the findings of a third-party privacy control assessment

（B）Review the findings of an industry benchmarking assessment

（C）Identify trends in the organization's number of privacy incidents.

（D）Identify trends in the organization's amount of compromised personal data

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

Which of the following needs to be identified FIRST to define the privacy requirements to use when assessing the selection of IT systems?
Type of data being processed

（A）Available technology platforms

（B）Applicable control frameworks

（C）Applicable privacy legislation

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Which of the following features should be incorporated into an organization's technology stack to meet privacy requirements related to the rights of data subjects to control their personal data?

（A）Allowing system administrators to manage data access

（B）Providing system engineers the ability to search and retrieve data

（C）Establishing a data privacy customer service bot for individuals

（D）Allowing individuals to have direct access to their data

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Which of the following is the BEST course of action to prevent false positives from data loss prevention (DLP) tools?

（A）Evaluate new data loss prevention (DLP) tools.

（B）Suppress the alerts generating the false positives.

（C）Re-establish baselines tor configuration rules

（D）Conduct additional discovery scans.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which key stakeholder within an organization should be responsible for approving the outcomes of a privacy impact assessment (PIA)?

（A）Data custodian

（B）Data processor

（C）Data owner

（D）Privacy data analyst

正解：C 解答を投票する

質問 6

Which of the following is the GREATEST benefit of adopting data minimization practices?

（A）Compliance requirements are met.

（B）Storage and encryption costs are reduced.

（C）Data retention efficiency is enhanced.

（D）The associated threat surface is reduced.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Which of the following is a PRIMARY objective of performing a privacy impact assessment (PIA) prior to onboarding a new Software as a Service (SaaS) provider for a customer relationship management (CRM) system?

（A）To assess the risk associated with personal data usage

（B）To classify personal data according to the data classification scheme

（C）To determine the service provider's ability to maintain data protection controls

（D）To identify controls to mitigate data privacy risks

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Which of the following should be of GREATEST concern when an organization wants to store personal data in the cloud?

（A）The data security policies and practices of the storage provider

（B）Any vulnerabilities identified in the cloud system

（C）The data recovery capabilities of the storage provider

（D）The organization's potential legal liabilities related to the data

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

An organization must de-identify its data before it is transferred to a third party Which of the following should be done FIRST?

（A）Ensure logging is turned on for the database

（B）Determine the categories of personal data collected

（C）Encrypt the data at rest and in motion

（D）Remove the identifiers during the data transfer

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

Which of the following BEST ensures data confidentiality across databases?

（A）Data catalog vocabulary

（B）Logical data model

（C）Data normalization

（D）Data anonymization

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

Which of the following is the MOST important consideration for developing data retention requirements?

（A）Industry guidelines

（B）Applicable regulations

（C）Cost-benefit analysis

（D）Data classification rules

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

Which of the following is the BEST way to validate that privacy practices align to the published enterprise privacy management program?

（A）Conduct a benchmarking analysis.

（B）Perform a control self-assessment (CSA).

（C）Conduct an audit.

（D）Report performance metrics.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

Which of the following vulnerabilities is MOST effectively mitigated by enforcing multi-factor authentication to obtain access to personal information?

（A）Vulnerabilities existing in authentication pages

（B）Organizations using weak encryption to transmit data

（C）End users using weak passwords

（D）End users forgetting their passwords

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Which of the following MOST significantly impacts an organization's ability to respond to data subject access requests?

（A）Third-party service level agreement (SLA) data is not always available.

（B）The organization's data retention schedule is complex.

（C）Availability of application data flow diagrams is limited.

（D）Logging of systems and application data is limited.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

Which of the following is the MOST important action to protect a mobile banking app and its data against manipulation and disclosure?

（A）Conduct penetration testing

（B）Implement application hardening measures.

（C）Provide the app only through official app stores

（D）Define the mobile app privacy policy.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Which of the following is the PRIMARY reason to complete a privacy impact assessment (PIA)?

（A）To comply with consumer regulatory requirements

（B）To classify personal data

（C）To establish privacy breach response procedures

（D）To understand privacy risks

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

CDPSE 無料問題集「ISACA Certified Data Privacy Solutions Engineer」

弊社を連絡する

関連リンク

トップ試験