Certified Chief Information Security Officer (CCISO) — Question 35
Scenario: Most industries require compliance with multiple government regulations and/or industry standards to meet data protection and privacy mandates.
When multiple regulations or standards apply to your industry you should set controls to meet the___________________________.
Answer options
- A. Most complex standard
- B. Recommendations of your Legal Staff
- C. Easiest regulation or standard to implement
- D. Stricter regulation or standard
Correct answer: D
Explanation
The correct answer is D, as it is essential to comply with the most stringent regulations to ensure adequate protection of data and privacy. Choosing the most complex standard or the easiest to implement does not guarantee compliance with the necessary legal requirements. Relying solely on legal staff recommendations may not cover all applicable regulations.