Hard1 markMultiple Choice

Area II: SecurityNISTPrivacyArea II

CPA · Question 67 · Area II: Security

Which NIST framework is specifically designed to help organizations manage privacy risks?

Answer options:

A.

NIST CSF

B.

NIST SP 800-53

C.

NIST Privacy Framework

D.

NIST RMF

How to approach this question

The name is in the title.

Full Answer

C.NIST Privacy Framework✓ Correct

NIST Privacy Framework

The NIST Privacy Framework is a tool for improving privacy through enterprise risk management, modeled after the CSF but focused on privacy.

Common mistakes

Assuming NIST CSF covers everything (it focuses on security, though they overlap).

Question 66 All questions Question 68

Practice the full CPA ISC Practice Exam 4

82 questions · hints · full answers · grading

Sign up free Take the exam

More questions from this exam

Q01A CPA is advising a client who is migrating their legacy on-premise ERP system to a cloud environ...Hard Q02An auditor is reviewing the Service Level Agreement (SLA) for a client using a public cloud provi...Hard Q03A company uses an Infrastructure as a Service (IaaS) model. During an IT audit, the auditor disco...Hard Q04An organization is implementing the COSO Enterprise Risk Management (ERM) framework to govern its...Hard Q05During a walkthrough of an order-to-cash process, the auditor observes that the sales manager can...Hard

View all 82 questions →