- (Topic 1)
Regulatory requirements typically force organizations to implement

Correct Answer:A

- (Topic 1)
An organization licenses and uses personal information for business operations, and a server containing that information has been compromised. What kind of law would require notifying the owner or licensee of this incident?

Correct Answer:A

- (Topic 2)
Which of the following activities results in change requests?

Correct Answer:A

- (Topic 4)
Your penetration testing team installs an in-line hardware key logger onto one of your
network machines. Which of the following is of major concern to the security organization?

Correct Answer:C

- (Topic 4)
You are having a penetration test done on your company network and the leader of the team says they discovered all the network devices because no one had changed the Simple Network Management Protocol (SNMP) community strings from the defaults. Which of the following is a default community string?

Correct Answer:D

- (Topic 1)
Which of the following is a MAJOR consideration when an organization retains sensitive customer data and uses this data to better target the organization’s products and services?

Correct Answer:D