exam questions

Exam CDPSE All Questions

View all questions & answers for the CDPSE exam

Exam CDPSE topic 1 question 217 discussion

Actual exam question from Isaca's CDPSE
Question #: 217
Topic #: 1
[All CDPSE Questions]

Which of the following is the BEST course of action to manage privacy risk when a significant vulnerability is identified in the operating system (OS) that supports an organization’s customer relationship management (CRM) system?

  • A. Apply OS patching to fix the vulnerability immediately.
  • B. Manage system permissions and access more strictly.
  • C. Enable comprehensive logging of activities at the OS level.
  • D. Perform a vulnerability assessment to determine the impact.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
821bbab
2 months, 1 week ago
I would go with A on this one. Applying OS patching immediately is the most effective and direct action to manage privacy risk related to a significant vulnerability. Patching addresses the specific security flaw, thereby reducing the risk of exploitation and protecting sensitive customer data stored in the CRM system. Performing a vulnerability assessment to determine the impact is a good practice, but in the case of a significant vulnerability that has already been identified, immediate action (such as patching) is more critical to minimize risk.
upvoted 1 times
821bbab
1 month, 3 weeks ago
Revising on above, D answer sounds better as while applying a patch is often necessary, an initial impact assessment (Option D) would be an excellent first step from a privacy standpoint. It helps ensure that the right actions are taken, particularly when balancing operational needs, privacy concerns, and regulatory obligations.
upvoted 1 times
...
...
johnH123
11 months, 3 weeks ago
Selected Answer: D
It's definitely not B. Initially, I wanted to say A - apply the patching, but D - Perform a vulnerability assessment to determine the impact makes the most sense since it will most likely result in an emergency change ticket to apply the OS patch, based on the severity.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago