Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 240
An organization that develops high-end technology is going through an internal audit. The organization uses two databases. The main database stores patent information and a secondary database stores employee names and contact information. A compliance team is asked to analyze the infrastructure and identify protected data. Which two types of protected data should be identified? (Choose two.)
Answer options
- A. Payment Card Industry (PCI)
- B. Sarbanes-Oxley (SOX)
- C. Intellectual Property (IP)
- D. Protected Health Information (PHI)
- E. Personally Identifiable Information (PII)
Correct answer: C, E
Explanation
The correct answers are C and E because Intellectual Property (IP) is relevant due to the presence of patent information in the main database, while Personally Identifiable Information (PII) pertains to the employee data stored in the secondary database. The other options, such as PCI, SOX, and PHI, do not directly relate to the data types described in the scenario.