New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CRISC Exam - Topic 3 Question 57 Discussion

Actual exam question for Isaca's CRISC exam
Question #: 57
Topic #: 3
[All CRISC Questions]

An IT department has provided a shared drive for personnel to store information to which all employees have access. Which of the following parties is accountable for the risk of potential loss of confidential information?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Garry at Jan 07, 2023, 10:14 PM

Limited Time Offer

25%

Off

Get Premium CRISC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Salome
4 months ago
Wow, I didn't know the data owner was the key player here!
upvoted 0 times
...
Mary
4 months ago
Really? I thought the risk manager would handle this.
upvoted 0 times
...
Taryn
4 months ago
Wait, isn't the end user also accountable for what they share?
upvoted 0 times
...
Sabina
4 months ago
I think the IT department shares some responsibility too.
upvoted 0 times
...
Felicitas
4 months ago
Definitely the data owner! They control access.
upvoted 0 times
...
Ahmad
5 months ago
I’m leaning towards the risk manager being accountable, but I could be mixing it up with another topic we covered.
upvoted 0 times
...
Noemi
5 months ago
I feel like the end user should have some responsibility too, especially if they mishandle the data.
upvoted 0 times
...
Barabara
5 months ago
I remember a practice question where the IT department was held responsible for security measures, but I don't know if that applies here.
upvoted 0 times
...
Lavonna
5 months ago
I think the data owner is usually the one accountable for the information stored, but I'm not entirely sure.
upvoted 0 times
...
Susy
5 months ago
This seems like a straightforward question about stakeholder management. I'll focus on understanding the key reasons for segmenting stakeholders.
upvoted 0 times
...
Gail
5 months ago
This is a straightforward conceptual question, but the visuals make it a bit tricky. I'll need to rely on my understanding of data flow principles to select the right answer.
upvoted 0 times
...
Elbert
5 months ago
This question seems straightforward. I think the key is to focus on the requirements for the Cisco 3800 Series access points and the existing infrastructure.
upvoted 0 times
...
Pura
5 months ago
Okay, let me think this through. If I'm having an issue with a regular expression in a monitor stanza, the splunkd.log file would be a good place to start looking for clues. The btool.log might also have relevant information, but I'm leaning towards C, splunkd.log, as the most likely answer.
upvoted 0 times
...
Lazaro
5 months ago
I'm really unsure about savings being an injection. Isn't that more about money being held back rather than spent?
upvoted 0 times
...
Gwenn
5 months ago
Hmm, the question mentions the group membership is being changed, so I'm thinking the answer might involve synchronizing the Company A directory to ensure the new group assignments are applied correctly.
upvoted 0 times
...
Gladys
10 months ago
The end user has to be accountable, right? They're the ones actually putting the data on the shared drive. How hard is it to read a few security guidelines?
upvoted 0 times
Beth
9 months ago
It's important for all employees to understand the risks and responsibilities when using the shared drive.
upvoted 0 times
...
Slyvia
10 months ago
Yes, end users should take accountability for their actions when storing data on the shared drive.
upvoted 0 times
...
Earlean
10 months ago
End users are responsible for following security guidelines to prevent loss of confidential information.
upvoted 0 times
...
...
Dierdre
10 months ago
Wait, are we sure there's even any confidential information on this shared drive? Maybe the employees are just storing their cat photos and recipes. You know how that goes...
upvoted 0 times
...
Tijuana
10 months ago
I'm not so sure. The IT department is the one providing the shared drive, so they have a duty to ensure it's secure. This one's on them, in my opinion.
upvoted 0 times
Kimbery
8 months ago
Regular security training for employees can help prevent potential loss of confidential information.
upvoted 0 times
...
Arlene
8 months ago
It's a shared responsibility between the IT department and the employees to protect confidential information.
upvoted 0 times
...
Hollis
8 months ago
Employees should also be responsible for ensuring they are storing information securely on the shared drive.
upvoted 0 times
...
An
8 months ago
IT department should definitely be accountable for the risk of potential loss of confidential information.
upvoted 0 times
...
Caprice
8 months ago
True, it's a shared responsibility between the IT department and the employees to ensure data security.
upvoted 0 times
...
Doyle
9 months ago
Yes, employees should also be accountable for how they handle and store confidential information.
upvoted 0 times
...
Mitsue
10 months ago
But what about the employees who have access to the shared drive? Shouldn't they also be responsible?
upvoted 0 times
...
In
10 months ago
IT department should be accountable for the risk of potential loss of confidential information.
upvoted 0 times
...
...
Donte
10 months ago
But shouldn't the IT department also be accountable for ensuring the security of the shared drive?
upvoted 0 times
...
Arthur
11 months ago
The data owner is definitely responsible here. They should have set up proper access controls and data classification policies to protect sensitive information.
upvoted 0 times
Kenneth
9 months ago
The IT department can provide the tools, but ultimately it's up to the data owner to protect the information.
upvoted 0 times
...
Leonard
9 months ago
I agree, the data owner should have taken steps to prevent unauthorized access.
upvoted 0 times
...
Melvin
9 months ago
They should have set up proper access controls and data classification policies to protect sensitive information.
upvoted 0 times
...
Casie
10 months ago
The data owner is definitely responsible here.
upvoted 0 times
...
...
Ramonita
11 months ago
I agree with Rene, the data owner should be responsible for protecting confidential information.
upvoted 0 times
...
Rene
11 months ago
I think the data owner is accountable for the risk.
upvoted 0 times
...

Save Cancel