CompTIA Security Plus Mock Test Q324

Which of the following security awareness training is BEST suited for data owners who are concerned with protecting the confidentiality of their data?

A. Social networking use training
B. Personally owned device policy training
C. Tailgating awareness policy training
D. Information classification training

Correct Answer: D
Section: Compliance and Operational Security

Explanation:
Information classification is done by confidentiality and comprises of three categories, namely: public use, internal use and restricted use. Knowing these categories and how to handle data according to its category is essential in protecting the confidentiality of the data.

Incorrect Answers:
A: Social networking can sometimes be a useful marketing tool, however most companies would rather choose to avoid social networking since the exposure of your data would be too great. Risk avoidance would be better.
B: It is best policy for companies not to allow users to bring their own devises – why would they provide training for own devices other than informing users that they are not allowed to bring their own devices.
C: Tailgating refers to the act of following someone through a door they just unlocked. This is a physical security issue.

References:
Dul Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, p. 404