PCIP Risk Management & Data Protection Strategies

Question 1

What is the primary goal of risk management in cybersecurity?

Accepted Answer

To identify and reduce security risks

Answer

To install firewalls only

Answer

To eliminate all risks

Answer

To increase compliance costs

Question 2

Which concept involves protecting data from unauthorized access?

Accepted Answer

Confidentiality

Answer

Integrity

Answer

Availability

Answer

Auditability

Question 3

What is data masking used for?

Accepted Answer

Conceal sensitive data

Answer

Encrypt files

Answer

Protect data backups

Answer

Generate usernames

Question 4

Which type of risk can be transferred through insurance?

Accepted Answer

Transferrable risk

Answer

Residual risk

Answer

Inherent risk

Answer

Organizational risk

Question 5

What does a data retention policy define?

Accepted Answer

Data storage duration

Answer

How to format hard drives

Answer

Network speed requirements

Answer

Application access rules

Question 6

Which strategy is best for preventing data breaches?

Accepted Answer

Encrypting sensitive data

Answer

Archiving files

Answer

Blocking email

Answer

Using spreadsheets

Question 7

What is considered a physical security control?

Accepted Answer

Biometric access control

Answer

Password policies

Answer

Firewall configuration

Answer

Antivirus software

Question 8

Which framework is commonly used for risk assessment?

Accepted Answer

NIST Risk Management Framework

Answer

FDA guidelines

Answer

ISO 9001

Answer

HIPAA checklist

Question 9

Which term describes the remaining risk after controls are applied?

Accepted Answer

Residual risk

Answer

Inherent risk

Answer

Total risk

Answer

External risk