CISSP PRACTICE QUESTIONS – 20200222

Effective CISSP Questions

Your company is a direct bank that relies entirely on internet banking; its shares are public-traded. You are exercising due diligence surveying applicable laws and regulations to your company. Which of the following has a profound effect on corporate governance and holds directors and officers personally liable for the accuracy of financial statements?
A. GDPR
B. GLBA
C. SOX
D. HITECH


Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is C. SOX.

SOX has a profound effect on corporate governance because it requires public companies to enhance disclosure, strengthen audit committees and internal controls, and hold directors and officers personally liable for the accuracy of financial statements and establish stricter criminal penalties for fraud.

HIPAA defines security and privacy rules for the healthcare and healthcare insurance industries. HITECH updates many of HIPAA’s privacy and security requirements and introduces new data breach notification requirements.

GLBA removes market barriers among banking, securities, and insurance companies and allows them to consolidate. However, it defines financial privacy rules, safeguards rules and requires pretexting protection to enforce information security.

GDPR addresses the transfer of personal data outside the European Union (EU). Controllers and processors of personal data are roles responsible for ensuring and implementing the data protection principles and measures. A mandatory role, data protection officer (DPO), is responsible for managing compliance with the GDPR.

 

 

 


您公司是一家完全依靠線上交易的網路銀行;其股票是公開交易的。您正在對公司適用的法律和法規進行盡職調查。以下哪項對公司治理有深遠影響,並要求董事和高階主管對財務報表的準確性承擔個人的法律責任?
A. GDPR
B. GLBA
C. SOX
D. HITECH

3 thoughts on “CISSP PRACTICE QUESTIONS – 20200222

  1. HITECH – health related
    GDPR – Europe related
    GLBA – customer privacy
    SOX – accounting practices etc.

    SOX is the answer

Leave a Reply