Data Privacy & Protection
An organization is developing an app that collects user data. Which principle ensures user data is protected?
Collecting only the data necessary for the application's functionality.
What is the main purpose of de-provisioning user accounts?:DDDDDD
To remove access rights and resources when no longer required.
A company implements DKIM for email protection. What does DKIM primarily prevent?
Email spoofing my G
A company wants to obscure Social Security numbers in their database. What technique should they use?
Data masking. (I love u ur doing great nathan<3)
Which access control model ensures users only access what they’ve been explicitly granted?
RBAC (Role-Based Access Control)- think of YOU control ME
An IDS alert shows repeated failed login attempts from one IP. What’s this likely indicating?
A brute-force attack attempt.
A company wants to ensure only the intended recipient can read their emails, even if intercepted. What PKI feature makes this possible?
Private key.
An organization adds a new incident response team to manage breaches. What type of control is this?
Operational control.
A company encrypts both stored data and data in transit. What’s the purpose of this?
To protect data confidentiality.
A cloud service provider wants secure encryption and key management. What technology provides strong key storage?
HSM (Hardware Security Module)!!!!!
Before integrating new security controls, a company tests their performance and effectiveness. Which change management step is this?
Test resultssssssssss
Frequent changes in firewall rules might not indicate intrusion, but what type of issue could it signal?
Misconfiguration or lack of policy control.
To reduce data loss impact, which strategy best lowers the exposure factor?
Increasing the frequency of data backups.
A security analyst reviews IPS/IDS logs. Which finding best indicates a potential intrusion attempt?
:OOO not clickbait!!! Signature-based alerts on known malware traffic.
Which technology manages email integrity and uses DNS records to authenticate senders?
SPF/DKIM/DMARC.