ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-001 All Questions

View all questions & answers for the CS0-001 exam
Go to Exam

Exam CS0-001 topic 1 question 192 discussion

Actual exam question from CompTIA's CS0-001
Question #: 192
Topic #: 1
[All CS0-001 Questions]

Which of the following has the GREATEST impact to the data retention policies of an organization?

  • A. The CIA classification matrix assigned to each piece of data
  • B. The level of sensitivity of the data established by the data owner
  • C. The regulatory requirements concerning the data set
  • D. The technical constraints of the technology used to store the data
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by lupinart at May 17, 2020, 7:24 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Kuku55
4 years, 2 months ago
Its regulatory requirement duh. Like in banks or goverment, they have a minimum retention of logs, not just technically, even physical documents, its just critical. D only says technological limitation to store data. Lol hope you understand.
upvoted 1 times
...
ITeaGuy
4 years, 6 months ago
D makes the most sense... IT has the GREATEST impact if it is limited and the governing regulations change throwing the technical constraints out the window and the Org scrambling to make the required changes to comply......
upvoted 2 times
...
Takondwa
4 years, 8 months ago
I think D is the correct answer. My understanding of the question is that you already have the policies in place, but then what you stop an organization from satisfying those regulatory/policy requirements
upvoted 2 times
...
Blind_Hatred
4 years, 10 months ago
I'm fairly confident that it's C. Look at this line from Cybersecurity Analyst Certification Bundle: "A very straightforward and perhaps tempting approach would be to look at the lengthiest legal or regulatory retention requirement on your organization and then apply that timeframe to all your data retention. The problem with this is that it will probably make your retained data set orders of magnitude greater than it needs to be. Not only does this impose additional storage costs, but it also makes it more difficult to comply with electronic discovery (e-discovery) orders. A better approach is to find the specific data sets that have mandated retention requirements and handle those accordingly. Everything else has a retention period that minimally satisfies the business requirements."
upvoted 1 times
...
TheThreatGuy
4 years, 10 months ago
Technical constraints are factored in creating a data retention policy, however the main factor is most definitely governing regulations.. if technical constraints only let you keep data for 6 months but regulations say you are required to keep for a year, you literally have no choice but to increase your orgs resources. https://thinksis.com/insights/what-to-consider-when-developing-a-data-retention-policy/
upvoted 2 times
...
shoop
4 years, 10 months ago
Agreed
upvoted 2 times
...
s3curity1
4 years, 10 months ago
Isn't this supposed to be letter C? A data retention policy is a recognized and proven protocol within an organization for retaining information for operational use while ensuring adherence to the laws and regulations concerning them.
upvoted 3 times
...
lupinart
4 years, 11 months ago
why is it not regulations governing the data?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago