⚡Flash Sale: 33% off Annual Membership, limited time only!⚡

CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-701 Practice Question

Your company is entering into a partnership with a third-party vendor to outsource the processing of customer data. The vendor will handle sensitive financial records. As the company's information security manager responsible for maintaining data security and compliance, you want to ensure you have the ability to verify the vendor's adherence to industry standards and regulatory requirements. Which of the following should you make sure is incorporated into the vendor contract?

  • A clause that mandates the vendor to provide annual security awareness training to their employees

  • A clause that allows your organization to conduct regular audits of the vendor's security measures to ensure compliance

  • A clause that solely restricts the types of data the vendor can process, without providing audit rights

  • A clause that exclusively requires the vendor to utilize encryption for all stored data without mention of audit rights

This question's topic:
CompTIA Security+ SY0-701 / 
Security Program Management and Oversight
Your Score:
Security Program Management and Oversight
General Security Concepts
Threats, Vulnerabilities, and Mitigations
Security Architecture
Security Operations