ISC2 Practice Exam Questions And Answers With Complete Solutions 100% Correct | 2024.
13 views 0 purchase
Course
ISC2
Institution
ISC2
ISC2 Practice Exam Questions And Answers With Complete Solutions 100% Correct | 2024.
Replaced SAS 70 in 2011
SSAE 16 - Statement on Standards for Attestation Engagements (SSAE) No. 16
created SAS 70, a standard used until 2011
AICPA - american institute of certified public accountants
Sarba...
isc2 practice exam questions and answers with comp
Written for
ISC2
All documents for this subject (54)
Seller
Follow
ACADEMICAIDSTORE
Reviews received
Content preview
ISC2 Practice Exam Questions And Answers
With Complete Solutions 100% Correct |
2024.
Replaced SAS 70 in 2011
SSAE 16 - Statement on Standards for Attestation Engagements (SSAE) No. 16
created SAS 70, a standard used until 2011
AICPA - american institute of certified public accountants
Sarbanes-Oxley Act of 2002
instigated the move from SAS 70
SOC reports
Service Organization Control Reports
SSAE 16
the standard used for a SOC 1 report
Readers of SOC 1 reports
could include financial executives at a user organization, compliance officers, and financial auditors of
the service organization.
TSC
AICPA's Trust Services Criteria
tests the controls for effectiveness
A SOC 2 Type 2 audit
the result of the auditor ensuring the controls are in place and well-designed
SOC 2 Type 1
A Soc 3
Same information as a Soc 2 report. Intended for a general audience.
Merchants with over 6 million transactions a year, across all channels or any merchant that has had a
data breach are in this category
PCI DSS level 1
US PII law regarding the government itself
, Privacy Act
US PII law regarding medical providers
HIPAA
US PII law regarding financial and insurance vendors
GLBA
for distributing data with less chance of quality loss
CDN
arranges data as objects in a structured hierarchy
Object storage
should make a data set more secure and decrease the chance of unauthorized access
Bit-splitting
Volume-storage encryption
any outsider (that is, a person who does not have access to the volume OS) will be able to steal only
encrypted data
suggested as possible masking techniques
random substitution, algorithmic substitution, deletion
the trait that allows DRM protection to follow protected files wherever they might be stored/copied
Persistence
"Processing," in a PII context
any manipulation of the data, to include securing or destroying it, in electronic or hard-copy form
involves encrypting the data before it enters the fields of the database; it is much more difficult to
search and review data that has been encrypted, making stuff like search, indexing more difficult
Application-level encryption
It is not included in the CSA CCM.
The DMCA deals with intellectual property and not specifically with personal privacy.
the practice of having sufficient data to replace a lost chunk in data dispersion, protecting against the
possibility of a device failing while it holds a given chunk; parity bits serve the same purpose in the
legacy RAID configuration
Erasure coding
also referred to as egress monitoring
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through EFT, credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying this summary from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller ACADEMICAIDSTORE. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy this summary for R252,73. You're not tied to anything after your purchase.