CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CertNexus
  5. ITS-110

Free ITS-110 Exam Braindumps (page: 11)

Page 10 of 26
PDF with 100 Questions

A user grants an IoT manufacturer consent to store personally identifiable information (PII). According to the General Data Protection Regulation (GDPR), when is an organization required to delete this data?

  1. Within ninety days after collection, unless required for a legal proceeding
  2. Within thirty days of a user's written request
  3. Within seven days of being transferred to secure, long-term storage
  4. Within sixty days after collection, unless encrypted

Answer(s): B



An IoT device has many sensors on it and that sensor data is sent to the cloud. An IoT security practitioner should be sure to do which of the following in regard to that sensor data?

  1. Collect as much data as possible so as to maximize potential value of the new IoT use-case.
  2. Collect only the minimum amount of data required to perform all the business functions.
  3. The amount or type of data collected isn't important if you have a properly secured IoT device.
  4. The amount or type of data collected isn't important if you implement proper authorization controls.

Answer(s): B



You work for a multi-national IoT device vendor. Your European customers are complaining about their inability to access the personal information about them that you have collected.
Which of the following regulations is your organization at risk of violating?

  1. Sarbanes-Oxley (SOX)
  2. General Data Protection Regulation (GDPR)
  3. Electronic Identification Authentication and Trust Services (elDAS)
  4. Database Service on Alternative Methods (DB-ALM)

Answer(s): B



You made an online purchase of a smart watch from a software as a service (SaaS) vendor, and filled out an extensive profile that will help you track several fitness variables. The vendor will provide you with customized health insights based on your profile. With which of the following regulations should the company be compliant? (Choose three.)

  1. Gramm-Leach-Bliley Act (GLBA)
  2. Payment Card Industry Data Security Standard (PCI-DSS)
  3. Federal Information Security Management Act (FISMA)
  4. Sarbanes-Oxley (SOX)
  5. Health Insurance Portability and Accountability Act (HIPAA)
  6. Family Educational Rights and Privacy Act (FERPA)
  7. Federal Energy Regulatory Commission (FERC)

Answer(s): B,E,F






Post your Comments and Discuss CertNexus ITS-110 exam with other Community members:

ITS-110 Discussions & Posts