CISA Certified Information Systems Auditor – Question1994
Which should be reviewed FIRST by an IS auditor to ensure that data is being secured appropriately for an application? A. Data classification B. Data encryption C. Data access D. Data storage
Correct Answer: A
Explanation:
Explanation:
Data classification is necessary to provide proper access rights to the users. If you do not classify data according to their sensitivity and importance to the business, you cannot apply proper access rules to them. Data owners are responsible for defining access rules. The data classification process starts with the process of establishing ownership of data. This process also helps to prepare data dictionary
Please disable your adblocker or whitelist this site!