A financial services company needs to establish information handling requirements for customer financial records. Which of the following should be included in these requirements?
Security classification, access controls, retention periods, and handling procedures
System performance metrics, database schema, backup schedule, and storage location
User training materials, project management timelines, budget allocation, and audit schedules
Information handling requirements should include security classifications, access controls, retention periods, and proper handling procedures. Customer financial records in a financial services company require careful protection to maintain confidentiality and comply with regulations like GLBA (Gramm-Leach-Bliley Act) or GDPR (General Data Protection Regulation). The correct answer includes the necessary components that ensure these sensitive records are handled appropriately throughout their lifecycle, including who can access them, how they should be stored, how long they should be kept, and what steps should be taken when transferring or disposing of them.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are security classifications and why are they important?
Open an interactive chat with Bash
What are access controls and how do they work?
Open an interactive chat with Bash
What are retention periods and why do they matter?
Open an interactive chat with Bash
ISC2 CISSP
Asset Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access