To define the impact levels of data breaches

To list security controls for different baselines

To establish rules for data sharing

To provide guidelines for data encryption

Moderate impact baseline

High impact baseline

Privacy control baseline

Low impact baseline

Ignoring external standards

Applying all controls universally

Removing unnecessary controls

Modifying controls to fit organizational needs

By selecting controls that apply to all systems

By enforcing the strictest controls available

By choosing controls specific to a system's needs

By eliminating all controls

To prevent unauthorized use and distribution

To enhance data encryption

To simplify data access

To increase data storage capacity

To manage cloud service costs

To provide cloud storage solutions

To monitor and enforce security policies for cloud services

To encrypt all cloud data

By storing data in secure locations

By replacing data with pseudonyms

By deleting sensitive data

By encrypting data