exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam

Exam CISA topic 1 question 1149 discussion

Actual exam question from Isaca's CISA
Question #: 1149
Topic #: 1
[All CISA Questions]

An organization is enhancing the security of a client-facing web application following a proposal to acquire personal information for a business purpose. Which of the following is MOST important to review before implementing this initiative?

  • A. Data ownership assignments
  • B. Regulatory compliance requirements
  • C. Customer notification procedures
  • D. Encryption capabilities
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
FAGFUR
4 months ago
Selected Answer: B
When enhancing the security of a client-facing web application that deals with personal information for a business purpose, the most important aspect to review before implementing the initiative is regulatory compliance requirements. Regulatory compliance is crucial, as various laws and regulations dictate how personal information should be handled, stored, and protected. Failing to comply with these regulations can result in legal consequences, financial penalties, and damage to the organization's reputation.
upvoted 1 times
...
SuperMax
5 months, 2 weeks ago
Selected Answer: B
B. Regulatory compliance requirements Legal Consequences: Failing to comply with relevant laws and regulations can result in severe legal consequences, including fines, penalties, and damage to the organization's reputation. Therefore, ensuring compliance is paramount. Protecting Personal Information: Acquiring personal information entails handling sensitive data, and regulations such as GDPR (General Data Protection Regulation), CCPA (California Consumer Privacy Act), or HIPAA (Health Insurance Portability and Accountability Act) dictate how such data should be collected, processed, and protected. Compliance with these regulations ensures the organization treats personal information with care and respect for individuals' privacy. Foundation for Security Measures: Regulatory compliance often sets the baseline for security measures that must be implemented. By reviewing and adhering to compliance requirements, the organization can establish a strong foundation for security practices, including data protection, access control, and encryption.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago