Certified Information Systems Auditor (CISA) — Question 756

To mitigate the risk of exposing data through application programming interface (API) queries, which of the following design considerations is MOST important?

Answer options

• A. Data quality
• B. Data integrity
• C. Data minimization
• D. Data retention

Correct answer: C

Explanation

Data minimization is essential because it involves limiting the amount of data exposed through APIs to only what is necessary for the application to function. This reduces the risk of sensitive information being accessed or leaked. The other options, while important, do not directly address the specific risk of exposing data through API queries.