What is a foundational model that informs how organizations consider risk when setting up systems and security policies?1 pointGeneral Data Protection Regulation law (GDPR)Cybersecurity Framework (CSF)Confidentiality, integrity, and availability (CIA) triadSensitive personally identifiable information (SPII)

Question 1Fill in the blank: A security _____ is a set of guidelines used for building plans to help mitigate risk and threats to data and privacy.1 pointlifecycleregulationframeworkcontrol2.Question 2An organization requires its employees to complete a new data privacy training program each year to reduce the risk of a data breach. What is this training requirement an example of?1 pointPersonally identifiable information (PII)Security controlData confidentialityCybersecurity Framework (CSF)3.Question 3What is a foundational model that informs how organizations consider risk when setting up systems and security policies?1 pointCybersecurity Framework (CSF)General Data Protection Regulation law (GDPR)Sensitive personally identifiable information (SPII)Confidentiality, integrity, and availability (CIA) triad4.Question 4Security teams use the NIST Cybersecurity Framework (CSF) as a baseline to manage short and long-term risk.1 pointTrueFalse

1.Question 1What is the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)?1 pointA required business framework for ensuring security updates and repairs are successfulA collection of security principles focused on maintaining confidentiality, integrity, and availabilityA set of security controls that help analysts determine what to do if a data breach occursStandards, guidelines, and best practices that organizations follow voluntarily in order to manage cybersecurity risk

How do security frameworks enable security professionals to help mitigate risk?1 pointThey are used to create unique physical characteristics to verify a person’s identity. They are used to establish guidelines for building security plans.They are used to establish laws that reduce a specific security risk.They are used to refine elements of a core security model known as the CIA triad.2.Question 2Competitor organizations are the biggest threat to a company’s security.1 pointTrueFalse3.Question 3Fill in the blank: Security controls are safeguards designed to reduce _____ security risks. 1 pointgeneralbroadscalespecificpublic4.Question 4A security analyst works on a project designed to reduce the risk of vishing. They develop a plan to protect their organization from attackers who could exploit biometrics. Which type of security control does this scenario describe?1 pointClassificationEncryptionAuthenticationCiphertextCoursera Honor Code  Learn more

Which of the following are core components of security frameworks? Select two answers.1 pointEstablishing regulatory compliance measuresSetting guidelines to achieve security goalsMonitoring personally identifiable information Implementing security processes

Question 4Security teams use the NIST Cybersecurity Framework (CSF) as a baseline to manage short and long-term risk.1 pointTrueFalse