Certified Ethical Hacker (CEH v11) — Question 173

Which regulation defines security and privacy controls for Federal information systems and organizations?

Answer options

• A. HIPAA
• B. EU Safe Harbor
• C. PCI-DSS
• D. NIST-800-53

Correct answer: D

Explanation

The correct answer is D, NIST-800-53, as it provides a comprehensive set of standards and guidelines for federal information systems regarding security and privacy controls. The other options, while important in their respective domains, do not specifically address the regulatory framework for federal information systems.