ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT1-002 All Questions

View all questions & answers for the PT1-002 exam
Go to Exam

Exam PT1-002 topic 1 question 108 discussion

Actual exam question from CompTIA's PT1-002
Question #: 108
Topic #: 1
[All PT1-002 Questions]

An assessment has been completed, and all reports and evidence have been turned over to the client. Which of the following should be done NEXT to ensure the confidentiality of the client's information?

  • A. Follow the established data retention and destruction process
  • B. Report any findings to regulatory oversight groups
  • C. Publish the findings after the client reviews the report
  • D. Encrypt and store any client information for future analysis
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by BinarySoldier at Nov. 27, 2021, 10:07 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BinarySoldier
Highly Voted 3 years, 4 months ago
This should be A
upvoted 8 times
Davar39
3 years, 3 months ago
I don't think A would help with the "confidentiality" part. I'll go with D.
upvoted 4 times
shakevia463
2 years, 9 months ago
Destroying the data to the right standards keeps it confidential imo
upvoted 4 times
...
...
...
bieecop
Most Recent 1 year, 9 months ago
Selected Answer: A
By following the data retention and destruction process, the penetration testing team can ensure that client information is properly protected from unauthorized access or disclosure. This may involve encrypting and securely storing any client-related data during the assessment, and then adhering to the established procedures for retaining and eventually destroying that data in a way that complies with legal and regulatory requirements.
upvoted 1 times
...
slizzy420
2 years, 7 months ago
Selected Answer: A
I think the answer is A because it indicates it would be following the pre-discussed arrangements between pentesters and client
upvoted 4 times
...
ResStapler
2 years, 7 months ago
Answer: D D - Encryption would maintain confidentiality… if you were keeping the client reports A - Does not satisfy the confidentiality requirement as data retention could be months, weeks, years…
upvoted 3 times
...
Charlieb123
3 years ago
You would need to encrypt the data if you were going to retain it; however, this depends on the established retention policy, because you maybe required to delete the data after handover, you wouldn't need to store for future analysis . Another silly question, probably a bad dump.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago