IIA Exam IIA-ACCA Topic 6 Question 59 Discussion

Actual exam question for IIA's IIA-ACCA exam

Question #: 59
Topic #: 6

A large hospital has an existing contract with a vendor in another country to provide software support and maintenance of the hospital's patient records information system. From the hospital management's perspective, which of the following controls would be most effective to address privacy risks related to this outsourcing arrangement^

AConduct periodic reviews of the privacy policy to ensure that the existing policy meets current legislation requirements in both regions.

BInclude a 'right to audit' clause in the contract and impose detailed security obligations on the outsourced vendor

CImplement mandatory privacy training for management to help with identifying privacy risks when outsourcing services

DDevelop an incident monitoring and response plan to track breaches from internal and external sources

Show Suggested Answer

Suggested Answer: A

by Lavera at May 24, 2023, 07:17 AM

Limited Time Offer

25%

Off

Get Premium IIA-ACCA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!