Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CDPSE All Questions

View all questions & answers for the CDPSE exam
Go to Exam

Exam CDPSE topic 1 question 217 discussion

Actual exam question from Isaca's CDPSE
Question #: 217
Topic #: 1
[All CDPSE Questions]

Which of the following is the BEST course of action to manage privacy risk when a significant vulnerability is identified in the operating system (OS) that supports an organization’s customer relationship management (CRM) system?

  • A. Apply OS patching to fix the vulnerability immediately.
  • B. Manage system permissions and access more strictly.
  • C. Enable comprehensive logging of activities at the OS level.
  • D. Perform a vulnerability assessment to determine the impact.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by johnH123 at Dec. 31, 2023, 5:02 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
821bbab
1 month ago
I would go with A on this one. Applying OS patching immediately is the most effective and direct action to manage privacy risk related to a significant vulnerability. Patching addresses the specific security flaw, thereby reducing the risk of exploitation and protecting sensitive customer data stored in the CRM system. Performing a vulnerability assessment to determine the impact is a good practice, but in the case of a significant vulnerability that has already been identified, immediate action (such as patching) is more critical to minimize risk.
upvoted 1 times
821bbab
2 weeks, 1 day ago
Revising on above, D answer sounds better as while applying a patch is often necessary, an initial impact assessment (Option D) would be an excellent first step from a privacy standpoint. It helps ensure that the right actions are taken, particularly when balancing operational needs, privacy concerns, and regulatory obligations.
upvoted 1 times
...
...
johnH123
10 months, 2 weeks ago
Selected Answer: D
It's definitely not B. Initially, I wanted to say A - apply the patching, but D - Perform a vulnerability assessment to determine the impact makes the most sense since it will most likely result in an emergency change ticket to apply the OS patch, based on the severity.
upvoted 4 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel