ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CRISC All Questions

View all questions & answers for the CRISC exam
Go to Exam

Exam CRISC topic 1 question 1146 discussion

Actual exam question from Isaca's CRISC
Question #: 1146
Topic #: 1
[All CRISC Questions]

Which of the following is the BEST way to mitigate the risk of inappropriate access to personally identifiable information (PII) by third-party cloud service personnel?

  • A. Utilize data encryption standards throughout the information life cycle
  • B. Ensure security clearance is in place within the third-party hiring process
  • C. Choose a third-party provider in a jurisdiction with few privacy regulations
  • D. Include data security requirements in the service level agreement (SLA)
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by john_boogieman at Feb. 19, 2023, 10:12 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mynk29
3 months, 3 weeks ago
Selected Answer: A
As a cloud sec architect this is my day to day job.
upvoted 2 times
...
CbtL
4 months, 3 weeks ago
Selected Answer: A
Going with A. Taking into consideration the whole key escrow concept for protecting data in the cloud.
upvoted 1 times
...
Koulyo
5 months, 2 weeks ago
isn't A a better one? it is a preventive one while D is a sort of risk transfer one?
upvoted 1 times
...
john_boogieman
6 months, 3 weeks ago
Selected Answer: D
Agree.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago