BEST CASP+ CAS-003 STUDY GUIDE
Your organization has been working to formally document all of its third-party agreements.
Management contacts you, requesting that you provide access to a document that spells out
exact
...
BEST CASP+ CAS-003 STUDY GUIDE
Your organization has been working to formally document all of its third-party agreements.
Management contacts you, requesting that you provide access to a document that spells out
exactly the security measures that should be taken with respect to the handling of data exchanged
between your organization and a third party. Which of the following documents should you
provide?
A BYOD
B TCA
C ISO
D SOE - ✔✔B
Which of the following cloud approaches offers the maximum control over company data?
A public
B private
C hybrid
D composite - ✔✔B
Which cloud solution can reduce costs to the participating organizations?
A diversified
B hybrid
C community
D private - ✔✔C
Your company is merging with a larger organization. Which of the following is not a
responsibility of the due diligence team?
A Create a risk profile for all identified risks involved in moving data.
B Ensure that auditors and the compliance team are using different frameworks.
C Define a plan to set and measure security controls at every step of the process.
D Prioritize processes and identify those that require immediate attention. - ✔✔B
Which of the following outline goals but do not give any specific ways to accomplish the stated
goals?
A rules
B procedures
C policies
D standards - ✔✔C
Which of the following refers to responsibilities that an organization has due to partnerships with
other organizations and customers?
A due process
B downstream liability
C due diligence
D indirect costs - ✔✔B
Which of the following tenets has been satisfied when an organization takes all the actions it can
reasonably take to prevent security issues or to mitigate damage if security breaches occur?
A due care
[Show More]