What does regulated data include?

Personally Identifiable Information (PII) and financial data covered by laws like GDPR, HIPAA, or PCI DSS

Patents, copyrights, and trademarks

Confidential legal documents and contracts

Formulas, manufacturing processes, or customer lists

What does protecting intellectual property involve?

A combination of legal measures, access controls, employee training, and safeguarding trade secrets

Encryption and access restrictions

Nondisclosure Agreements (NDAs) and employee education

Confidential legal documents and contracts

What does financial information include?

Sensitive financial data, such as banking records, tax documents, financial reports, and payment card data

General personal information, such as names and addresses

Publicly available information, such as social media profiles

Non-sensitive data, such as marketing materials

What is data geolocation?

The practice of determining the physical location or geographic origin of data

The process of encrypting data to ensure security

The method of storing data in the cloud

The technique of backing up data to prevent loss

What is data sovereignty?

Storing data within specific geographic locations and bound by local regulations and policies

Encrypting data to protect it from unauthorized access

Backing up data to multiple locations to prevent loss

Sharing data across multiple jurisdictions without restrictions

What are common strategies to protect sensitive financial information?

Data classification, access controls, encryption, and regular security audits

Public sharing of data, social media monitoring, and marketing campaigns

Frequent software updates, employee training, and customer feedback

Data deletion, cloud storage, and mobile device management

What is data sovereignty?

The idea that data is bound by the regulations and control policies of the country or jurisdiction in which it is stored or originates.

The concept of storing data in multiple locations to ensure redundancy.

The practice of encrypting data to protect it from unauthorized access.

The process of transferring data across borders without any restrictions.

Why must organizations consider data geolocation when transferring data across borders?

To comply with varying data protection laws in different regions.

To ensure data is encrypted during transfer.

To reduce the cost of data transfer.

To increase the speed of data transfer.

What do data protection regulations like GDPR in the EU restrict?

The transfer of personal data outside of the region unless certain conditions or safeguards are met.

The encryption of personal data.

The storage of personal data in cloud services.

The access to personal data by local authorities.

What should organizations consider when using cloud services to ensure compliance with data sovereignty requirements?

The data center locations that align with their data sovereignty requirements.

What is the primary focus of data geolocation and data sovereignty?

Where data is stored, how it is governed, and which laws and regulations apply to it.

The speed and efficiency of data processing.

The cost-effectiveness of data storage solutions.

What is the purpose of data masking in securing sensitive data?

To replace sensitive data with fictitious values

To divide a network into isolated segments or zones

To substitute sensitive data with an identifier or token

To implement strict access controls and permissions

What is the main goal of implementing data permission restrictions?

To ensure that only authorized individuals or systems can access specific data

To replace sensitive data with fictitious values

To divide a network into isolated segments or zones

To substitute sensitive data with an identifier or token

How does segmenting data enhance security?

By dividing a network into isolated segments or zones

By replacing sensitive data with fictitious values

By substituting sensitive data with a distinct identifier or token

By implementing strict access controls and permissions

Which of the following is NOT a characteristic of data masking?

It replaces sensitive data with fictitious values

It is used for transferring data to non-production environments

It keeps the original data confidential

What role did the HVAC vendor play in the Target network breach scenario?

They managed the target environment and gave the vendor access to their network.

They provided malware to the attackers.

They segmented the network properly.

They protected the POS systems.

What was the main consequence of the Target network not being properly segmented?

Attackers were able to move laterally within the network.

Attackers could not access the network.

The network was protected from breaches.

What is data obfuscation?

Altering the format or structure of data to make it less readable or understandable

Converting information into a secure and unreadable form

Replacing sensitive data with fictitious values

Encrypting data to protect it from unauthorized access

What is hashing commonly used for?

Storing and verifying passwords securely

What is the primary responsibility of data owners within an organization?

Providing the policy and direction for specific data sets or data domains

Managing data retention and disposal policies

Approving access requests and changes to data access

Ensuring compliance with data governance policies

Which of the following is NOT a responsibility of data owners?

Determining data classification and sensitivity levels

Defining data access rights and permissions

Aligning data usage with business objectives

Which of the following is a responsibility of data stewards?

Conducting data classification and adding sensitivity labels.

Approving access requests and changes to data access.

Aligning data usage with business objectives.

Managing data retention and disposal policies.

What is one of the tasks involved in data profiling?

Defining data access rights and permissions.

Data cleansing and data transformation.

Enforcing data governance policies.

Which activity is NOT a responsibility of data stewards?

Ensuring compliance with data governance policies.

Managing metadata and documentation.

Collaborating with data owners and custodians.

Resolving data-related issues and discrepancies.

What is the role of data stewards in metadata management?

Managing metadata and documentation.

Approving access requests and changes to data access.

Conducting data classification and adding sensitivity labels.

Aligning data usage with business objectives.

Which of the following is NOT listed as a responsibility of data stewards?

Approving access requests and changes to data access.

Conducting data classification and adding sensitivity labels.

Data profiling and data quality assessments.

Enforcing data governance policies.

What is one of the primary responsibilities of data custodians?

Implementing data security measures and access controls

Setting the strategic direction for data governance

Managing the day-to-day aspects of data quality and usage

Creating data governance policies

Which of the following is NOT a responsibility of data custodians?

Setting the strategic direction for data governance

Managing data storage, backups, and encryption

Ensuring data integrity and availability

Handling data migrations and data archiving

SEC+ Mod 3 Part 1

Authored by Pat Johnson

Computers

12th Grade

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

67 questions

Show all answers

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

70 questions

ID and Access Management

Quiz

•

10th Grade - University

69 questions

Ôn thi giữa kì 1 Tin 10

Quiz

•

10th Grade - University

68 questions

Computer science Study Guide

Quiz

•

9th - 12th Grade

65 questions

Bài 1 - Bài 5

Quiz

•

12th Grade

66 questions

Cambridge - IGCSE - Computer Science - Input Devices

Quiz

•

11th Grade - Professi...

72 questions

Mikrotik Lesson

Quiz

•

12th Grade

65 questions

Examen de Diagnostico de Tecnologia

Quiz

•

9th - 12th Grade

71 questions

H446 Section 1: Components of a computer

Quiz

•

11th Grade - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

18 questions

[AP CSP] JavaScript Programming Lesson 2025-2026

Lesson

•

9th - 12th Grade

57 questions

[AP CSP] Unit 5 Review: Internet & Cybersecurity

Quiz

•

9th - 12th Grade

SEC+ Mod 3 Part 1

Which of the following is NOT a state in which data exists within a network?

Data in motion is NOT a state in which data exists within a network. The other options - data at rest, data in transit, and data in use - are valid states of data within a network.

What is data at rest?

Stored data that is not being used is referred to as data at rest, as it is not actively being processed or accessed.

Which of the following measures is commonly used to secure data stored on devices or servers?

Full-Disk Encryption (FDE) is commonly used to secure data stored on devices or servers by encrypting the entire disk, making it inaccessible without the proper decryption key.

What does protecting data at rest involve?

Protecting data at rest involves encryption, access controls, authentication, and physical security.

What does "data in transit" refer to?

Data in transit refers to data that is actively moving or being transmitted over a network or communication channel, making it the correct choice.

Which of the following is a common protocol for securing data in transit?

Secure Sockets Layer (SSL) is a common protocol for securing data in transit, encrypting the connection between client and server to protect sensitive information.

What does "data in use" refer to?

Data in use refers to data that is actively being processed, accessed, or utilized by an application or a user, making it the correct choice.

Which of the following is a protective measure for data in use?

Data encryption is a protective measure for data in use as it secures the data while it is being accessed and used.

What is an example of data that is readable by a human?

Text, documents, and emails are examples of data that is readable by a human.

What is an example of data that is not readable by a human?

Binary code or encrypted data are examples of data that is not readable by a human.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers