ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CCSP All Questions

View all questions & answers for the CCSP exam
Go to Exam

Exam CCSP topic 1 question 232 discussion

Actual exam question from ISC's CCSP
Question #: 232
Topic #: 1
[All CCSP Questions]

Although the United States does not have a single, comprehensive privacy and regulatory framework, a number of specific regulations pertain to types of data or populations.
Which of the following is NOT a regulatory system from the United States federal government?

  • A. HIPAA
  • B. SOX
  • C. FISMA
  • D. PCI DSS
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
The Payment Card Industry Data Security Standard (PCI DSS) pertains to organizations that handle credit card transactions and is an industry-regulatory standard, not a governmental one. The Sarbanes-Oxley Act (SOX) was passed in 2002 and pertains to financial records and reporting, as well as transparency requirements for shareholders and other stakeholders. The Health Insurance Portability and Accountability Act (HIPAA) was passed in 1996 and pertains to data privacy and security for medical records. FISMA refers to the Federal Information Security Management Act of 2002 and pertains to the protection of all US federal government IT systems, with the exception of national security systems.
by Sa007788 at Jan. 27, 2021, 6:44 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
DA95
2 months, 2 weeks ago
SOX (Sarbanes-Oxley Act) is not a regulatory system from the United States federal government. SOX is a corporate governance law that was enacted in 2002 in response to a number of accounting scandals at major companies. The law sets out certain requirements for public companies, including the need for independent audits and improved financial reporting. SOX does not pertain to privacy or data regulation specifically. The other three options (HIPAA, FISMA, and PCI DSS) are all regulatory systems from the United States federal government. HIPAA (Health Insurance Portability and Accountability Act) is a law that protects the privacy of individuals' health information. FISMA (Federal Information Security Management Act) is a law that establishes a framework for securing federal government information systems. PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards for organizations that handle credit card information.
upvoted 1 times
...
akg001
9 months, 1 week ago
Selected Answer: D
D. PCI DSS
upvoted 1 times
...
funktribe
1 year, 8 months ago
The Federal Information Security Management Act of 2002 is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002. The act recognized the importance of information security to the economic and national security interests of the United States. PCI is rules created by the credit card companies hence global.
upvoted 1 times
...
NobleGiantz
2 years ago
D is correct. Explanation is on point.
upvoted 2 times
...
Sa007788
2 years ago
Explain is not true : https://en.wikipedia.org/wiki/Federal_Information_Security_Management_Act_of_2002 according to this link :" According to FISMA, the head of each agency shall develop and maintain an inventory of major information systems (including major national security systems)"
upvoted 1 times
Zeezee2
1 year, 3 months ago
The act recognized the importance of information security to the economic and national security interests of the United States. The act requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago