AllExam Dumps

DUMPS, FREE DUMPS, VCP5 DUMPS| VMWARE DUMPS, VCP DUMPS, VCP4 DUMPS, VCAP DUMPS, VCDX DUMPS, CISCO DUMPS, CCNA, CCNA DUMPS, CCNP DUMPS, CCIE DUMPS, ITIL, EXIN DUMPS,


READ Free Dumps For
Warning: Undefined variable $vendor in /home1/bandbozu/getfreedumps.com/quiz.php on line 141
-
Warning: Undefined variable $exam_number in /home1/bandbozu/getfreedumps.com/quiz.php on line 141





Question ID 16893

From an information security perspective, information that no longer supports the main
purpose of the business should be:

Option A

analyzed under the retention policy.

Option B

protected under the information classification policy.

Option C

analyzed under the backup policy.

Option D

protected under the business impact analysis (BIA).

Correct Answer A
Explanation Explanation: Option A is the type of analysis that will determine whether the organization is required to maintain the data for business, legal or regulatory reasons. Keeping data that are no longer required unnecessarily consumes resources, and, in the case of sensitive personal information, can increase the risk of data compromise. Options B. C and D are attributes that should be considered in the destruction and retention policy. A BIA could help determine that this information does not support the main objective of the business, but does not indicate the action to take.


Question ID 16894

An organization's information security strategy should be based on:

Option A

 managing risk relative to business objectives.

Option B

managing risk to a zero level and minimizing insurance premiums.

Option C

avoiding occurrence of risks so that insurance is not required. 

Option D

 transferring most risks to insurers and saving on control costs.

Correct Answer A
Explanation Explanation: Organizations must manage risks to a level that is acceptable for their business model, goals and objectives. A zero-level approach may be costly and not provide the effective benefit of additional revenue to the organization. Long-term maintenance of this approach may not be cost effective. Risks vary as business models, geography, and regulatory- and operational processes change. Insurance covers only a small portion of risks and requires that the organization have certain operational controls in place.

Send email to admin@getfreedumps for new dumps request!!!