Eccouncil Exam ECSAv10 Topic 6 Question 48 Discussion

Actual exam question for Eccouncil's ECSAv10 exam

Question #: 48
Topic #: 6

Which one of the following acts makes reputational risk of poor security a reality because it requires public disclosure of any security breach that involves personal information if it is unencrypted or if it is reasonably believed that the information has been acquired by an unauthorized person?

ACalifornia SB 1386

BSarbanes-Oxley 2002

CGramm-Leach-Bliley Act (GLBA)

DUSA Patriot Act 2001

Show Suggested Answer

Suggested Answer: A

by Marge at Nov 18, 2022, 03:42 AM

Limited Time Offer

25%

Off

Get Premium ECSAv10 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ulysses

2 months ago

I'm pretty sure it's A) California SB 1386. That law is all about breach notification, so it fits the description perfectly. Time to update my resume with another certification!

upvoted 0 times

...

Christa

2 months ago

Haha, D) USA Patriot Act 2001? What, does that make the NSA come knocking if you get hacked? I'm definitely not choosing that one!

upvoted 0 times

Annamaria

1 months ago

A) California SB 1386 - I agree, it's crucial for companies to be transparent about any security incidents involving personal data.

upvoted 0 times

...

Lorean

1 months ago

B) Sarbanes-Oxley 2002 - This act focuses more on financial reporting, not specifically on security breaches.

upvoted 0 times

...

Luann

1 months ago

C) Gramm-Leach-Bliley Act (GLBA) - It's important to protect personal information, especially with all the data breaches happening.

upvoted 0 times

...

Glory

2 months ago

A) California SB 1386 - Yeah, that one definitely makes companies think twice about their security measures.

upvoted 0 times

...

Vivienne

2 months ago

Hmm, this one's tricky. I'm torn between A) and C), but I'll go with A) since California usually leads the way on these kinds of privacy laws.

upvoted 0 times

Clement

23 days ago

User 3: I agree, A) sounds like the right choice.

upvoted 0 times

...

Mila

1 months ago

User 2: Yeah, California is usually ahead on privacy laws.

upvoted 0 times

...

Jarod

1 months ago

User 1: I think it's A) California SB 1386.

upvoted 0 times

...

Owen

3 months ago

I'm going with C) Gramm-Leach-Bliley Act (GLBA). That law deals with financial institutions and personal data, so it makes sense it would have a breach disclosure requirement.

upvoted 0 times

Carrol

29 days ago

D) USA Patriot Act 2001 is more about national security and anti-terrorism measures.

upvoted 0 times

...

Ming

30 days ago

B) Sarbanes-Oxley 2002 focuses on corporate governance and financial disclosure.

upvoted 0 times

...

Angella

1 months ago

C) Gramm-Leach-Bliley Act (GLBA) is specifically for financial institutions.

upvoted 0 times

...

Julene

1 months ago

A) California SB 1386 also has a breach disclosure requirement.

upvoted 0 times

...

Whitney

1 months ago

D) USA Patriot Act 2001 is more focused on anti-terrorism measures and national security, not breach disclosure.

upvoted 0 times

...

Maryanne

2 months ago

C) Gramm-Leach-Bliley Act (GLBA) does indeed have a breach disclosure requirement for financial institutions.

upvoted 0 times

...

Wenona

2 months ago

B) Sarbanes-Oxley 2002 focuses on financial reporting and internal controls, not specifically on breach disclosure.

upvoted 0 times

...

Tamala

2 months ago

A) California SB 1386 requires public disclosure of any security breach involving personal information if it is unencrypted or believed to be acquired by an unauthorized person.

upvoted 0 times

...

Mattie

3 months ago

I think it's A) California SB 1386. That law requires public disclosure of any security breach involving personal information, which sounds like the reputational risk scenario described in the question.

upvoted 0 times

...