Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

CIMA Exam CIMAPRO19-P03-1 Topic 1 Question 81 Discussion

Actual exam question for CIMA's CIMAPRO19-P03-1 exam
Question #: 81
Topic #: 1
[All CIMAPRO19-P03-1 Questions]

KLO is a major quoted car rental company The company is considering publishing its first cyber risk management report

AH rental bookings are made online Customers receive a booking reference number that they use to collect their cars from a convenient branch Customers enter their credit card details both so that KLO can take payment for their rental and also so that the customers can be charged automatically for late returns or damage to cars

KLO's management believes that it has three key areas of cyber risk Cyber criminals may wish to make bookings using fictitious data in order to steal KLO's cars, they may wish to use customers details to identify addresses of people who are away from home so that they can burgle houses and they may wish to abuse customer credit card details

KLO's Board is concerned that admitting to the nsk of stealing cars might encourage cnminals to exploit that vulnerability AJso. it is concerned that customers will be reluctant to rent cars if that would mean that their homes could be at risk of burglary while they are away The vulnerability of credit card details seems obvious and so the Board is not reluctant to admit to that.

Which TWO of the following are correct?

Show Suggested Answer Hide Answer
Suggested Answer: A, C

by Layla at Sep 18, 2024, 03:40 AM

Limited Time Offer

25%

Off

Get Premium CIMAPRO19-P03-1 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Lelia
5 days ago
But what if the Board omits some areas of concern? Will the accountant still sign the report?
upvoted 0 times
...
Adell
6 days ago
I agree with Buck. It's important for stakeholders to know that their information is protected.
upvoted 0 times
...
Buck
10 days ago
I think the Board should be clear about all sensitive information and the controls in place.
upvoted 0 times
...
Anika
10 days ago
I agree with A, but I'm not sure about C. Surely the accountant can't force the Board to disclose something they're not comfortable with.
upvoted 0 times
...
Delila
27 days ago
A and C seem like the correct answers. The Board should be transparent about the risks, and the independent accountant should require a full account of the risks and controls.
upvoted 0 times
Domonique
4 days ago
C) The independent accountant who will express an opinion on the risks and controls will be unwilling to sign the report unless it contains a full account of all risks and controls
upvoted 0 times
...
Major
14 days ago
A) The Board should be clear about all sensitive information that the company holds, but should also be clear about the robust controls in place to safeguard that information.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77