Feb 20 β’ πββοΈ CISSP
GOOD MORNING TEAM!! CISSP Practice Question (Domain 1: Security and Risk Management)
Your organization deploys a third-party AI model for customer credit decisions. Regulators require explainability for all automated decisions affecting consumers. The vendor claims their model is proprietary and refuses to disclose decision logic. What is your MOST appropriate action?
A. Require the vendor to provide explainability documentation or terminate the contract
B. Build an internal wrapper that approximates the model's decision logic
C. Accept the vendor limitation and disclose the AI usage in customer agreements
D. Transfer regulatory compliance responsibility to the vendor through contractual terms
Come back for the answer tomorrow, or study more now!
2
20 comments
GOOD MORNING TEAM!! CISSP Practice Question (Domain 1: Security and Risk Management)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+46
2
+39
3
+34
4
+33
5
+28
Powered by