Certified Secure Software Lifecycle Professional (CSSLP) — Question 38

Which of the following methods can be helpful to eliminate social engineering threat? Each correct answer represents a complete solution. Choose three.

Answer options

• A. Password policies
• B. Data classification
• C. Data encryption
• D. Vulnerability assessments

Correct answer: A, B, D

Explanation

Password policies, data classification, and vulnerability assessments are all effective methods to combat social engineering threats. Password policies help ensure strong credentials, data classification assists in understanding the sensitivity of information, and vulnerability assessments identify weaknesses that could be exploited. Data encryption, while important for securing data, does not specifically address social engineering tactics.