IAPP Exam CIPM Topic 10 Question 76 Discussion

Actual exam question for IAPP's CIPM exam

Question #: 76
Topic #: 10

[All CIPM Questions]

Which of the following controls does the PCI DSS framework NOT require?

AImplement strong asset control protocols.

BImplement strong access control measures.

CMaintain an information security policy.

DMaintain a vulnerability management program.

Show Suggested Answer

Suggested Answer: A

The optimum first step to take when creating a Privacy Officer governance model is to involve senior leadership. Senior leadership plays a crucial role in establishing and supporting a privacy program within an organization. They can provide strategic direction, allocate resources, approve policies, endorse initiatives, communicate values, and demonstrate accountability. By involving senior leadership from the beginning, a Privacy Officer can ensure that the privacy program aligns with the organization's vision, mission, goals, and culture. Senior leadership can also help overcome potential barriers or resistance from other stakeholders by endorsing and promoting the privacy program.

CIPM Body of Knowledge (2021), Domain I: Privacy Program Governance, Section A: Privacy Governance Models, Subsection 1: Privacy Officer Governance Model

CIPM Study Guide (2021), Chapter 2: Privacy Governance Models, Section 2.1: Privacy Officer Governance Model

CIPM Textbook (2019), Chapter 2: Privacy Governance Models, Section 2.1: Privacy Officer Governance Model

CIPM Practice Exam (2021), Question 139

by James at Nov 14, 2024, 12:36 PM

Limited Time Offer

25%

10 days ago

I think the answer is A) Implement strong asset control protocols.

upvoted 0 times

...