8d β’ πββοΈ CISSP
CISSP Practice Question (Domain 2: Asset Security / Data Governance)
An enterprise deploys agentic AI systems that autonomously collect data from internal systems and external sources to answer executive queries. Over time, agents begin retaining intermediate data and derived insights to improve future performance. Legal cannot determine what regulated data is being stored or reused. Leadership wants minimal friction.
What is the MOST appropriate action to take FIRST?
A. Encrypt all agent retained data using enterprise key management
B. Perform a data inventory and classification of agent memory and outputs
C. Restrict agents to real time queries with no local persistence
D. Update contracts with AI vendors to address derived data ownership
Come back for the answer tomorrow, or study more now!
1
16 comments
CISSP Practice Question (Domain 2: Asset Security / Data Governance)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+65
2
+49
3
+41
4
+41
5
+23
Powered by