The primary concern from privacy governance perspective for a leading bank is that the personnel working in non-production environment are not always security cleared to operate with the customers’ Personal Identifiable Information (PII) used in the production environment. This practice represents a security vulnerability where data can be copied by unauthorized personnel and security measures associated with standard production level controls can be easily bypassed.

The primary concern from privacy governance perspective for a leading bank is that the personnel working in non-production environment are not always security cleared to operate with the customers’ Personal Identifiable Information (PII) used in the production environment. This practice represents a security vulnerability where data can be copied by unauthorized personnel and security measures associated with standard production level controls can be easily bypassed.

What technology solutions can be implemented by the organization to overcome this situation:
A . Data classification tools can be used to strengthen security of sensitive data.
B . Use of tool to mask the sensitive data.
C . Define policy for segregation of duties.
D . Hire a privacy expert.

View Answer

Answer: B

Explanation:

Reference: https://en.wikipedia.org/wiki/Data_masking