Exam SY0-701 Topic 1 Question 147 Discussion
Actual exam question for CompTIA's SY0-701 exam
Question #: 147
Topic #: 1
Question #: 147
Topic #: 1
Which of the following data roles is responsible for identifying risks and appropriate access to data?
Suggested Answer: A Vote an answer
The data owner is responsible for identifying risks associated with the data and determining who should have access to it. This role involves:
* Setting the classification level for the data.
* Defining appropriate access controls based on sensitivity and regulatory requirements.
* Ensuring that risks related to the data are properly managed.
The data owner typically has ultimate responsibility for the data, including its protection and compliance with policies.
* B. Custodian: The custodian is responsible for the day-to-day maintenance and protection of data, such as ensuring backups and enforcing security measures, but they do not define access rights or identify risks.
* C. Steward: The steward is often responsible for the quality and governance of data, ensuring its accuracy and consistency, but not for assessing risks or determining access.
* D. Controller: The controller is a legal role under regulations like GDPR, responsible for determining the purposes and means of processing personal data, but this does not directly involve assessing risks and assigning access rights in a broader organizational context.
Why not the other options?
* Setting the classification level for the data.
* Defining appropriate access controls based on sensitivity and regulatory requirements.
* Ensuring that risks related to the data are properly managed.
The data owner typically has ultimate responsibility for the data, including its protection and compliance with policies.
* B. Custodian: The custodian is responsible for the day-to-day maintenance and protection of data, such as ensuring backups and enforcing security measures, but they do not define access rights or identify risks.
* C. Steward: The steward is often responsible for the quality and governance of data, ensuring its accuracy and consistency, but not for assessing risks or determining access.
* D. Controller: The controller is a legal role under regulations like GDPR, responsible for determining the purposes and means of processing personal data, but this does not directly involve assessing risks and assigning access rights in a broader organizational context.
Why not the other options?
by Quintina at Aug 25, 2025, 11:00 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).