لا تريد أن تفوت شيئا؟

نصائح اجتياز امتحان الشهادة

آخر أخبار الامتحانات ومعلومات الخصم

برعاية وحديثة من قبل خبرائنا

نعم، أرسل لي النشرة الإخبارية

خذ اختبارات أخرى عبر الإنترنت

السؤال #1
When analyzing user data, how is differential privacy applied?
A. By injecting noise into aggregated datasets
B. By assessing differences between datasets
C. By applying asymmetric encryption to datasets
D. By removing personal identifiers from datasets
عرض الإجابة
اجابة صحيحة: A
السؤال #2
Between November 30th and December 2nd, 2013, cybercriminals successfully infected the creditcard payment systems and bypassed security controls of a United States-based retailer with malwarethat exfiltrated 40 million credit card numbers. Six months prior, the retailer had malware detectionsoftware installed to prevent against such an attack.Which of the following would best explain why the retailers consumer data was still exfiltrated?
A. The detection software alerted the retailers security operations center per protocol, but the information security personnel failed to act upon the alerts
B. The U
C. The IT systems and security measures utilized by the retailers third-party vendors were in compliance with industry standards, but their credentials were stolen by black hat hackers who then entered the retailers system
D. The retailers network that transferred personal data and customer payments was separate from the rest of the corporate network, but the malware code was disguised with the name of software that is supposed to protect this information
عرض الإجابة
اجابة صحيحة: B
السؤال #3
SCENARIOPlease use the following to answer the next question:Light Blue Health (LBH) is a healthcare technology company developing a new web and mobileapplication that collects personal health information from electronic patient health records. Theapplication will use machine learning to recommend potential medical treatments and medicationsbased on information collected from anonymized electronic health records. Patient users may alsoshare health data collected from other mobile apps with the LBH app.The a
A. The app asks income level to determine the treatment of care
B. The app sells aggregated data to an advertising company without prior consent
C. The app has a pop-up ad requesting sign-up for a pharmaceutical company newsletter
D. The app asks questions during account set-up to disclose family medical history that is not necessary for the treatment of the individuals symptoms
عرض الإجابة
اجابة صحيحة: D
السؤال #4
Not updating software for a system that processes human resources data with the latest securitypatches may create what?
A. Authentication issues
B. Privacy vulnerabilities
C. Privacy threat vectors
D. Reportable privacy violations
عرض الإجابة
اجابة صحيحة: B
السؤال #5
When should code audits be concluded?
A. At code check-in time
B. At engineering design time
C. While code is being sent to production
D. Before launch after all code for a feature is complete
عرض الإجابة
اجابة صحيحة: D
السؤال #6
A company configures their information system to have the following capabilities:Allow for selective disclosure of attributes to certain parties, but not to others.Permit the sharing of attribute references instead of attribute values - such as I am over 21 insteadof birthday date.Allow for information to be altered or deleted as needed.These capabilities help to achieve which privacy engineering objective?
A. Predictability
B. Manageability
C. Disassociability
D. Integrity
عرض الإجابة
اجابة صحيحة: C
السؤال #7
SCENARIOPlease use the following to answer the next question:Light Blue Health (LBH) is a healthcare technology company developing a new web and mobileapplication that collects personal health information from electronic patient health records. Theapplication will use machine learning to recommend potential medical treatments and medicationsbased on information collected from anonymized electronic health records. Patient users may alsoshare health data collected from other mobile apps with the LBH app.The a
A. Obtain consent before using personal health information for data analytics purposes
B. Provide the user with an option to select which personal data the application may collect
C. Disclose what personal data the application the collecting in the company Privacy Policy posted online
D. Document each personal category collected by the app and ensure it maps to an app function or feature
عرض الإجابة
اجابة صحيحة: C
السؤال #8
A privacy engineer reviews a newly developed on-line registration page on a companys website. Thepurpose of the page is to enable corporate customers to submit a returns / refund request forphysical goods. The page displays the following data capture fields: company name, accountreference, company address, contact name, email address, contact phone number, product name,quantity, issue description and company bank account details.After her review, the privacy engineer recommends setting certain capture field
A. The contact phone number field
B. The company address and name
C. The contact name and email address
D. The company bank account detail field
عرض الإجابة
اجابة صحيحة: B
السؤال #9
What Privacy by Design (PbD) element should include a de-identification or deletion plan?
A. Categorization
B. Remediation
C. Retention
D. Security
عرض الإجابة
اجابة صحيحة: C
السؤال #10
Which of the following functionalities can meet some of the General Data Protection Regulation’s(GDPR’s) Data Portability requirements for a social networking app designed for users in the EU?
A. Allow users to modify the data they provided the app
B. Allow users to delete the content they provided the app
C. Allow users to download the content they have provided the app
D. Allow users to get a time-stamped list of what they have provided the app
عرض الإجابة
اجابة صحيحة: C
السؤال #11
Which of the following would be the best method of ensuring that Information Technology projectsfollow Privacy by Design (PbD) principles?
A. Develop a technical privacy framework that integrates with the development lifecycle
B. Utilize Privacy Enhancing Technologies (PETs) as a part of product risk assessment and management
C. Identify the privacy requirements as a part of the Privacy Impact Assessment (PIA) process during development and evaluation stages
D. Develop training programs that aid the developers in understanding how to turn privacy requirements into actionable code and design level specifications
عرض الإجابة
اجابة صحيحة: D
السؤال #12
What privacy risk is NOT mitigated by the use of encrypted computation to target and serve onlineads?
A. The ad being served to the user may not be relevant
B. The user’s sensitive personal information is used to display targeted ads
C. The personal information used to target ads can be discerned by the server
D. The user’s information can be leaked to an advertiser through weak de-identification techniques
عرض الإجابة
اجابة صحيحة: D
السؤال #13
SCENARIOPlease use the following to answer the next question:Light Blue Health (LBH) is a healthcare technology company developing a new web and mobileapplication that collects personal health information from electronic patient health records. Theapplication will use machine learning to recommend potential medical treatments and medicationsbased on information collected from anonymized electronic health records. Patient users may alsoshare health data collected from other mobile apps with the LBH app.The a
A. Limiting access to the app to authorized personnel
B. Including non-transparent policies, terms and conditions in the app
C. Insufficiently deleting personal data after an account reaches its retention period
D. Not encrypting the health record when it is transferred to the Light Blue Health servers
عرض الإجابة
اجابة صحيحة: A
السؤال #14
SCENARIOPlease use the following to answer the next question:Light Blue Health (LBH) is a healthcare technology company developing a new web and mobileapplication that collects personal health information from electronic patient health records. Theapplication will use machine learning to recommend potential medical treatments and medicationsbased on information collected from anonymized electronic health records. Patient users may alsoshare health data collected from other mobile apps with the LBH app.The a
A. Prevent the downloading of photos stored in the app
B. Dissociate the patient health data from the personal data
C. Exclude the collection of personal information from the health record
D. Create a policy to prevent combining data with external data sources
عرض الإجابة
اجابة صحيحة: D
السؤال #15
Which of the following is the least effective privacy preserving practice in the Systems DevelopmentLife Cycle (SDLC)?
A. Conducting privacy threat modeling for the use-case
B. Following secure and privacy coding standards in the development
C. Developing data flow modeling to identify sources and destinations of sensitive data
D. Reviewing the code against Open Web Application Security Project (OWASP) Top 10 Security Risks
عرض الإجابة
اجابة صحيحة: C

عرض الإجابات بعد التقديم

يرجى إرسال البريد الإلكتروني الخاص بك والواتس اب للحصول على إجابات الأسئلة.

ملحوظة: يرجى التأكد من صلاحية معرف البريد الإلكتروني وWhatsApp حتى تتمكن من الحصول على نتائج الاختبار الصحيحة.

بريد إلكتروني:
رقم الواتس اب/الهاتف: