Data Protection

Question 1

Involve setting up virtual boundaries to restrict data access based on the geographic location.

Answer 1

Geographic restrictions

Question 2

Fundamental data security method that transforms readable data, plaintext, into unreadable data or ciphertext using an algorithm and an encryption key.

Answer 2

Encryption

Question 3

Technique that converts data into a fixed size of numerical or alphanumeric characters, known as the hash value.

Answer 3

Hashing

Question 4

Involves replacing some or all of the data in a field with a placeholder, such as X, to conceal the original content.

Answer 4

Masking

Question 5

Replaces sensitive data with non-sensitive substitutes, known as tokens. The original data is stored securely in a separate database with a token serving as a reference to the original data.

Answer 5

Tokenization

Question 6

Involves making data unclear or unintelligible, making it difficult for unauthorized users to understand. This can involve various techniques, such as encryption, data masking, and the use of pseudonyms.

Answer 6

Obfuscation

Question 7

Involves dividing a network into separate segments, each with its own security controls.

Answer 7

Segmentation

Question 8

Involve defining who has access to specific data and what they can do with it.

Answer 8

Permission restrictions

Question 9

Refers to any data stored in databases, file systems, or other storage system.

Answer 9

Data at Rest

Question 10

Encrypts the entire hard drive

Answer 10

Full Dish Encryption

Question 11

Encrypts specific partitions of a hard drive, leaving other partition unencrypted

Answer 11

Partition Encryption

Question 12

Encrypts individual files

Answer 12

File Encryption

Question 13

Encrypts a set of selected files or directories

Answer 13

Volume Encryption

Question 14

Encrypts data stored in a database

Answer 14

Database Encryption

Question 15

Encrypts specific fields within a database record

Answer 15

Record Encryption

Question 16

Refers to data actively moving from one location to another, such as across the Internet or through a private network

Answer 16

Data in Transit/Data in Motion

Question 17

Cryptographic protocols designed to provide secure communication over a computer network

Answer 17

SSL and TLS

Question 18

Technology that creates a secure connection over a less secure network (Internet)

Answer 18

Virtual Private Network - VPN

Question 19

Protocol suite used to secure IP communications by authenticating and encrypting each IP packet in a data stream.

Answer 19

Internet Protocol Security (IPSec)

Question 20

Refers to data in the process of being created, retrieved,updated, or deleted.

Answer 20

Data in Use

Question 21

Information controlled by laws, regulations, or industry standards

Answer 21

Regulated Data

Question 22

Any information that can be used to identify an individual

Answer 22

Personal Identification Information (PII)

Question 23

Any information about health status, provision of healthcare, or payment for healthcare that can be linked to a specific individual

Answer 23

Protected Health Information (PHI)

Question 24

Type of confidential business information that provides a company with a competitive edge.

Answer 24

Trade Secret

Question 25

Creations of the mind, such as inventions, literary and artistic works, designs, and symbols ## Footnote Data drives decision making, fuels innovation, and provides insights into business operations.

Answer 25

Intellectual Property (IP)

Question 26

Includes any data related to legal proceedings, contracts, or regulatory compliance. ## Footnote Regulated data is controlled by laws, regulations, or industry standards.

Answer 26

Legal Information

Question 27

Includes data related to an organization's financial transactions, such as sales records, invoices, tax documents, and bank statements ## Footnote Financial information is often targeted by cyber criminals for fraud or identity theft.

Answer 27

Financial Information

Question 28

Payment Card Industry Data Security Standard ## Footnote It regulates the protection of financial information.

Answer 28

What is the **PCI DSS**?

Question 29

Information that can be understood directly by humans without the need for a machine or software ## Footnote Examples include text documents and spreadsheets.

Answer 29

Human-readable Data

Question 30

Information that requires a machine or software to interpret ## Footnote This includes binary code or machine language.

Answer 30

Non-human Readable Data

Question 31

Refers to the concept that digital information is subject to the laws of the country in which it is located ## Footnote Data sovereignty has emerged as a critical aspect of data governance in today's cloud-dominant world.

Answer 31

Data sovereignty

Question 32

Has stringent rules for data protection and grants individuals strong rights over their personal data ## Footnote Once outside these regions, individuals are no longer protected by GDPR.

Answer 32

General Data Protection Regulation (GDPR)

Question 33

Set up to monitor the data of a system while it's in use, in transit, or at rest. It does this in order to detect any attempts to steal the data.

Answer 33

Data loss prevention

Question 34

A piece of software that is installed on a workstation or a laptop. It's going to monitor the data that's in use on the computer. If someone tries to do a file transfer, it'll either stop the file transfer or alert the admin of the occurrence based on certain rules and policies, very much like an IDS or IPS would, but focused on data.

Answer 34

Endpoint DLP system

Question 35

A piece of software hardware that is a solution placed at the perimeter of your network. A sole function in life is to check all of the data going into and out of your network with a special focus on things going out of the network.

Answer 35

Network DLP system

Question 36

A software that is installed on a server in the data centers and inspects the data while it's addressed on the server. This is usually because they've encrypted it or watermarked it, and we want to make sure that nobody is accessing the data at times that they shouldn't be.

Answer 36

Storage DLP

Question 37

Usually offered as a software as a service solution, and that's a part of your cloud service and storage needs. They're going to protect your data when it's stored inside of those cloud services.

Answer 37

Cloud-based DLP system