Exam CIPT topic 1 question 228 discussion

Actual exam question from IAPP's CIPT

Question #: 228
Topic #: 1

[All CIPT Questions]

Which of the following is NOT a factor to consider in FAIR analysis?

A. The severity of the harm that might be caused by the privacy risk
B. The capability of a threat actor to exploit the analyzed privacy risk
C. The stage of the data life cycle in which the analyzed privacy risk occurs
D. The probability that a threat actor’s attempts to exploit a privacy risk might succeed

Show Suggested Answer

Suggested Answer: C 🗳️

by Ssourav at Aug. 12, 2024, 5:26 a.m.

Comments

Submit Cancel

Ssourav

3 months, 2 weeks ago

Selected Answer: C

The correct answer is **C. The stage of the data life cycle in which the analyzed privacy risk occurs**. FAIR (Factor Analysis of Information Risk) analysis focuses on understanding and quantifying information security and privacy risks by assessing factors like the severity of harm, the capability of a threat actor, and the probability of a successful exploitation. The stage of the data life cycle is not a primary consideration in FAIR analysis, which is more concerned with the nature and impact of the risks themselves.

upvoted 1 times

...

Most Voted

Save Cancel

Loading ...

Exam CIPT All Questions

View all questions & answers for the CIPT exam

Exam CIPT topic 1 question 228 discussion

Comments

Ssourav

Get IT Certification

New Version GCP Professional Cloud Architect Certificate & Helpful Information

The 5 Most In-Demand Project Management Certifications of 2019