Certified Information Systems Security Professional (CISSP) — Question 246

What BEST describes the confidentiality, integrity, availability triad?

Answer options

• A. A vulnerability assessment to see how well the organization's data is protected
• B. The three-step approach to determine the risk level of an organization
• C. The implementation of security systems to protect the organization's data
• D. A tool used to assist in understanding how to protect the organization's data

Correct answer: D

Explanation

The correct answer is D, as it refers to a tool that aids in understanding the principles of protecting data, encapsulated by the CIA triad. Options A, B, and C describe specific processes or implementations rather than a conceptual tool for understanding data protection.