Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 116 discussion

Actual exam question from Isaca's CISA
Question #: 116
Topic #: 1
[All CISA Questions]

An IS auditor found that a company executive is encouraging employee use of social networking sites for business purposes. Which of the following recommendations would BEST help to reduce the risk of data leakage?

  • A. Requiring policy acknowledgment and nondisclosure agreements (NDAs) signed by employees
  • B. Monitoring employees' social networking usage
  • C. Establishing strong access controls on confidential data
  • D. Providing education and guidelines to employees on use of social networking sites
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by SL9413 at Feb. 14, 2023, 3:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
veli_117
1 month, 1 week ago
Selected Answer: D
Never A
upvoted 1 times
...
Swallows
7 months, 2 weeks ago
Selected Answer: D
Education and guidelines can help employees understand the benefits and risks of using social media for business purposes, such as increasing brand awareness, engaging with customers, and sharing industry insights.
upvoted 2 times
...
fori12
7 months, 2 weeks ago
Selected Answer: D
users may access these services through other means such as mobile phones and home computers; therefore, awareness training is most critical so best choice will be D
upvoted 2 times
...
3008
1 year ago
Selected Answer: D
D is answer
upvoted 2 times
3008
11 months, 1 week ago
the best recommendation to reduce the risk of data leakage would be to provide education and guidelines to employees on the use of social networking sites. This recommendation would help to raise awareness of the risks and provide guidance on safe practices. Additionally, it is important to establish policies and procedures that clearly define what is expected of employees when using social networking sites for business purposes. By providing clear guidance and educating employees, the risk of data leakage can be reduced.
upvoted 4 times
...
...
AB1237
1 year, 2 months ago
Selected Answer: A
A. Requiring policy acknowledgment and nondisclosure agreements (NDAs) signed by employees The best recommendation to reduce the risk of data leakage in this scenario is to require policy acknowledgment and nondisclosure agreements (NDAs) signed by employees. By doing so, the company sets clear expectations for how social networking sites should be used for business purposes, and it emphasizes the importance of maintaining the confidentiality of sensitive information. Employees who sign NDAs are legally bound not to disclose confidential information, which helps mitigate the risk of data leakage.
upvoted 4 times
3008
11 months, 1 week ago
Requiring policy acknowledgment and nondisclosure agreements signed by employees This recommendation would help to ensure that employees are aware of their obligations regarding the handling of confidential data. However, it does not address the risk of data leakage through the use of social networking sites.
upvoted 3 times
...
...
Gingingin
1 year, 4 months ago
Why not A? signing a NDAs makes employees more responsible about the data.
upvoted 1 times
...
SL9413
1 year, 9 months ago
Can somebody clarify why it would not be C please?
upvoted 1 times
Davibless
4 months ago
Also thought of C. My reasonong is, strong access controls ensure that only authorized personnel have access to confidential data, which mitigates the risk of unauthorized disclosure or leakage through social networking platforms. It ensures that even if employees use these platforms, access to sensitive data remains tightly controlled and secure.
upvoted 1 times
...
007Georgeo
1 year, 6 months ago
For C: is a crucial security measure, but it does not specifically address the risk of data leakage through social networking sites. Access controls are essential, but they need to be complemented with guidelines and education on social networking practices to adequately address the identified risk.
upvoted 1 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel