ExpertHard1 markMultiple Choice
CPA · Question 67 · Area I: Information Systems
An auditor is reviewing a database schema. They notice that the 'SocialSecurityNumber' column is indexed. What is the security risk?
An auditor is reviewing a database schema. They notice that the 'SocialSecurityNumber' column is indexed. What is the security risk?
Answer options:
A.
Indexing slows down search performance.
B.
The index itself might contain unencrypted sensitive data or be accessible.
C.
Indexing prevents encryption.
D.
Indexing causes data duplication errors.
How to approach this question
Think about how indexes work (copies of data).
Full Answer
B.The index itself might contain unencrypted sensitive data or be accessible.✓ Correct
Auditors must check that if a column is sensitive, its indexes are also protected/encrypted.
Common mistakes
Focusing on performance.
Practice the full CPA ISC Practice Exam 2
82 questions · hints · full answers · grading
More questions from this exam
Q01A service organization provides a cloud-based payroll platform where clients access the software ...MediumQ02An auditor is reviewing the backup strategy for a financial institution that requires a Recovery ...HardQ03During a walkthrough of the change management process, an auditor observes that developers have w...MediumQ04An auditor is reviewing a SQL query used to generate a list of active customers for a marketing c...HardQ05Which of the following entities is considered a 'Covered Entity' under the HIPAA Privacy Rule?Medium