Data Protection

Question 1

What is the importance of data classification?

Answer 1

Helps allocate appropriate protection resources and prevents over-classification to avoid excessive costs

Requires proper policies to identify and classify data accurately

Question 2

What type of data is classified as public?

Answer 2

No impact if released; often publicly accessible data

Question 3

What defines sensitive data?

Answer 3

Minimal impact if released, e.g., financial data

Question 4

What information is contained in private data?

Answer 4

Internal personnel or salary information

Question 5

What does confidential data hold?

Answer 5

Trade secrets, intellectual property, source code, etc.

Question 6

What characterizes critical data?

Answer 6

Extremely valuable and restricted information

Question 7

Fill in the blank: Sensitive data has _______ impact if released.

Answer 7

minimal

Question 8

True or False: Public data has a significant impact if released.

Answer 8

False

Question 9

Fill in the blank: Critical data is characterized as extremely _______ and restricted information.

Answer 9

valuable

Question 10

What is Data Ownership?

Answer 10

Process of identifying the individual responsible for maintaining the confidentiality, integrity, availability, and privacy of information assets

Data ownership is crucial for accountability in data management.

Question 11

Who is a Data Owner?

Answer 11

A senior executive responsible for labeling information assets and ensuring they are protected with appropriate controls

Data owners play a critical role in establishing data protection policies.

Question 12

What does a Data Controller do?

Answer 12

Entity responsible for determining data storage, collection, and usage purposes and methods, as well as ensuring the legality of these processes

Data controllers are key in compliance with data protection laws.

Question 13

Define Data Processor.

Answer 13

A group or individual hired by the data controller to assist with tasks like data collection and processing

Data processors must operate under the instructions of the data controller.

Question 14

What is the role of a Data Steward?

Answer 14

Focuses on data quality and metadata, ensuring data is appropriately labeled and classified, often working under the data owner

Data stewards help maintain data integrity and usability.

Question 15

What responsibilities does a Data Custodian have?

Answer 15

Responsible for managing the systems on which data assets are stored, including enforcing access controls, encryption, and backup measures

Data custodians are essential for operational data security.

Question 16

What does a Privacy Officer oversee?

Answer 16

Oversees privacy-related data, such as personally identifiable information (PII), sensitive personal information (SPI), or protected health information (PHI), ensuring compliance with legal and regulatory frameworks

Privacy officers are crucial for protecting individual privacy rights.

Question 17

Who should be designated as Data Owners?

Answer 17

Data owners should be designated within their respective departments based on their knowledge of the data and its significance within the organization

Data owners are responsible for the management and oversight of data assets.

Question 18

What does Full Disk Encryption (FDE) do?

Data At Rest

Answer 18

Encrypts the entire hard drive

FDE provides comprehensive data protection by encrypting all data on the disk.

Question 19

What is the purpose of Partition Encryption?

Data At Rest

Answer 19

Encrypts specific partitions, leaving others unencrypted

Useful for protecting sensitive data while allowing access to other data.

Question 20

What does File Encryption accomplish?

Data At Rest

Answer 20

Encrypts individual files

This method is ideal for securing specific documents or files.

Question 21

What is the function of Volume Encryption?

Data At Rest

Answer 21

Encrypts selected files or directories

Allows for targeted encryption without affecting the entire disk.

Question 22

What is Database Encryption?

Data At Rest

Answer 22

Encrypts data stored in a database at column, row, or table levels

Protects sensitive information within databases from unauthorized access.

Question 23

What does Record Encryption do?

Data At Rest

Answer 23

Encrypts specific fields within a database record

This provides granular control over which data is protected.

Question 24

What is the definition of Data at Rest?

Answer 24

Data stored in databases, file systems, or storage systems, not actively moving.

Question 25

What is Data in Transit?

Answer 25

Data actively moving from one location to another, vulnerable to interception.

Question 26

What are Transport Encryption Methods?

Answer 26

Methods used to secure data during transmission, including: * SSL (Secure Sockets Layer) * TLS (Transport Layer Security) * VPN (Virtual Private Network) * IPSec (Internet Protocol Security)

Question 27

What does SSL stand for?

Answer 27

Secure Sockets Layer.

Question 28

What is the purpose of TLS?

Answer 28

Secure communication over networks, widely used in web browsing and email.

Question 29

What is the function of a VPN?

Answer 29

Creates secure connections over less secure networks like the internet.

Question 30

What does IPSec secure?

Answer 30

Secures IP communications by authenticating and encrypting IP packets.

Question 31

True or False: Data in Transit is not vulnerable to interception.

Answer 31

False.

Question 32

What does 'Data in Use' refer to?

Answer 32

Data actively being created, retrieved, updated, or deleted

Question 33

Data in use protection measures?

Answer 33

* Encryption at the application level * Access Control * Scure Enclaves * INTEL software Guard ## Footnote INTEL software Guard encryupts dat in memory to prevent unautherized access

Question 34

What are the Data Types

Answer 34

* Regulated Data * PII * PHI * Trade Secrets * Intellectual Property (IP) * Legal Information * Financial Information * Human Readable * Non-Human Readable

Question 35

What is Data Sovereignty?

Answer 35

Digital information subject to laws of the country where it's located ## Footnote Data sovereignty emphasizes that data is governed by the legal frameworks of the nation in which it resides.

Question 36

What does GDPR stand for?

Answer 36

General Data Protection Regulation ## Footnote GDPR is a regulation in EU law on data protection and privacy.

Question 37

What is the primary purpose of GDPR?

Answer 37

Protects EU citizens' data within EU and EEA borders ## Footnote GDPR ensures that individuals have control over their personal data.

Question 38

Is compliance with GDPR required regardless of data location?

Answer 38

Yes ## Footnote Organizations outside the EU that process data of EU citizens must comply with GDPR.

Question 39

What are Geographic Restrictions?

Answer 39

Virtual boundaries to restrict data access based on location ## Footnote Also known as geofencing.

Question 40

What is Encryption?

Answer 40

Transform plaintext into ciphertext using algorithms and keys ## Footnote Essential for data security.

Question 41

What is Hashing commonly used for?

Answer 41

Password storage ## Footnote A method to secure passwords by converting them into a fixed-size string.

Question 42

What does Masking do?

Answer 42

Replace some or all data with placeholders (e.g., 'x') ## Footnote Used to protect sensitive information in non-production environments.

Question 43

What is Tokenization?

Answer 43

Replace sensitive data with non-sensitive tokens * Original data stored securely in a separate database * Often used in payment processing for credit card protection ## Footnote Helps in reducing the risk of data breaches.

Question 44

What is Obfuscation?

Answer 44

Make data unclear or unintelligible ## Footnote Used to protect sensitive information from unauthorized access.

Question 45

What is Segmentation in network security?

Answer 45

Divide network into separate segments with unique security controls * Prevent lateral movement in case of a breach ## Footnote Enhances security by limiting access and exposure.

Question 46

What are Permission Restrictions?

Answer 46

Define data access and actions through ACLs or RBAC ## Footnote Access Control Lists (ACLs) and Role-Based Access Control (RBAC) are common methods.

Question 47

What is an Endpoint DLP System?

Answer 47

Installed as software on workstations or laptops, monitors data in use on individual computers, can prevent or alert on file transfers based on predefined rules.

Question 48

What does a Network DLP System focus on?

Answer 48

Monitoring data entering and leaving the network, detects unauthorized data leaving the network.

Question 49

Where is a Storage DLP System installed?

Answer 49

Installed on a server in the data center, inspects data at rest, especially encrypted or watermarked data.

Question 50

What is the primary function of a Cloud-Based DLP System?

Answer 50

Protects data stored in cloud services.

Question 51

True or False: An Endpoint DLP System can prevent file transfers based on predefined rules.

Answer 51

True

Question 52

Fill in the blank: A Storage DLP System monitors data _______.

Answer 52

[at rest]

Question 53

What type of DLP System is installed as software on individual computers?

Answer 53

Endpoint DLP System

Question 54

What type of DLP System is placed at the network perimeter?

Answer 54

Network DLP System

Question 55

What does a Storage DLP System flag?

Answer 55

Policy violations

Question 56

Fill in the blank: A Cloud-Based DLP System is offered as a _______.

Answer 56

[software-as-a-service solution]