Certified Information Systems Security Professional (CISSP) — Question 387

What is the BEST approach to anonymizing personally identifiable information (PII) in a test environment?

Answer options

• A. Swapping data
• B. Randomizing data
• C. Encoding data
• D. Encrypting data

Correct answer: B

Explanation

Randomizing data is the most effective method for anonymizing PII because it alters the data while maintaining its usability for testing purposes. Swapping, encoding, and encrypting do not adequately ensure the data cannot be traced back to individuals, particularly in a test environment where realistic data patterns may still be recognizable.