3.Question 3What is a foundational model that informs how organizations consider risk when setting up systems and security policies?1 pointSensitive personally identifiable information (SPII)Cybersecurity Framework (CSF)Confidentiality, integrity, and availability (CIA) triadGeneral Data Protection Regulation law (GDPR)

Question 1Fill in the blank: A security _____ is a set of guidelines used for building plans to help mitigate risk and threats to data and privacy.1 pointlifecycleregulationframeworkcontrol2.Question 2An organization requires its employees to complete a new data privacy training program each year to reduce the risk of a data breach. What is this training requirement an example of?1 pointPersonally identifiable information (PII)Security controlData confidentialityCybersecurity Framework (CSF)3.Question 3What is a foundational model that informs how organizations consider risk when setting up systems and security policies?1 pointCybersecurity Framework (CSF)General Data Protection Regulation law (GDPR)Sensitive personally identifiable information (SPII)Confidentiality, integrity, and availability (CIA) triad4.Question 4Security teams use the NIST Cybersecurity Framework (CSF) as a baseline to manage short and long-term risk.1 pointTrueFalse

1.Question 1What is the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)?1 pointA required business framework for ensuring security updates and repairs are successfulA collection of security principles focused on maintaining confidentiality, integrity, and availabilityA set of security controls that help analysts determine what to do if a data breach occursStandards, guidelines, and best practices that organizations follow voluntarily in order to manage cybersecurity risk

.Question 1What types of risks do security plans address? Select three answers.1 pointShift of market conditionsDamage to assetsDisclosure of dataLoss of information2.Question 2What are the basic elements of a security plan? Select three answers.1 pointProceduresStandardsRegulationsPolicies3.Question 3Fill in the blank: The NIST CSF is a _____ framework that consists of standards, guidelines, and best practices to manage cybersecurity risk.1 pointvoluntarymandatorylimitedrigid4.Question 4What are some benefits of the NIST Cybersecurity Framework (CSF)? Select three answers.1 pointIt’s adaptable to fit the needs of any business.It is required to do business online.It can be used to identify and assess risk.It helps organizations achieve regulatory standards.Coursera Honor Code  Learn more

Which of the following are core components of security frameworks? Select two answers.1 pointSetting guidelines to achieve security goalsEstablishing regulatory compliance measuresMonitoring personally identifiable information Implementing security processes

How do security frameworks enable security professionals to help mitigate risk?1 pointThey are used to create unique physical characteristics to verify a person’s identity. They are used to establish guidelines for building security plans.They are used to establish laws that reduce a specific security risk.They are used to refine elements of a core security model known as the CIA triad.2.Question 2Competitor organizations are the biggest threat to a company’s security.1 pointTrueFalse3.Question 3Fill in the blank: Security controls are safeguards designed to reduce _____ security risks. 1 pointgeneralbroadscalespecificpublic4.Question 4A security analyst works on a project designed to reduce the risk of vishing. They develop a plan to protect their organization from attackers who could exploit biometrics. Which type of security control does this scenario describe?1 pointClassificationEncryptionAuthenticationCiphertextCoursera Honor Code  Learn more