Answer C
Data classification is typically implemented to ensure that data is adequately protected based on its sensitivity and criticality. While compliance with the organization's data policies may necessitate data classification, the ultimate goal is often to mitigate risks associated with data breaches, unauthorized access, or data loss.
By classifying data according to its level of sensitivity or importance, organizations can establish appropriate security controls, access restrictions, and encryption measures to protect against potential threats. This proactive approach to data protection helps organizations safeguard their valuable assets and maintain trust with stakeholders.
From CRM: "Evaluate data classification practices for alignment with the organization’s policies and applicable external requirements.", so I choose A.
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.CISA Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Swallows
9 months, 2 weeks agoa84n
12 months agohermfrancis
1 year ago