Organizations must recognize the privacy and confidentiality needs of their stakeholders, including clients, patients, students, citizens, suppliers, or business partners.

38. stakeholders whose concerns must be addressed in data security management include A：External Standards organizations Regulators or the Media B：Media analysts, Internal Risk Management, Suppliers, or Regulators C：The Internal Audit and risk committees of the organization D：All of these E：Clients，Patients，Citizens，Suppliers, or Business Partners 正确答案：E 你的答案：E 解析：7.1：虽然数据安全的详细情况（如哪些数据需要保护）因行业和国家有所不同，但是数据安全实线的目标是相同的，即根据隐私和保密法规、合同协议和业务要求来保护信息资产，这些要求来自以下几个方面。（1）利益相关方应识别利益相关方的隐私和保密需求，包括客户、病人、学生、公民、供应商或商业伙伴等。组织中的每个人必须是对利益相关方数据负有责任的受托人。

Government regulations are in place to protect the interests of somestakeholders.

Each organization has proprietary data to protect. An organization’sdata provides insight into its customers and, when leveraged effectively, can provide a competitiveadvantage.

Business processes require individuals in certain roles be able to access, use, and maintain data.

Contractual and non-disclosure agreements also influence data security requirements.

Steps:

Security classifications and regulatory sensitivity can be captured at the data element and data set level. Technology exists to tag data so that Metadata travel with the information as it flows across the enterprise. Developing a master repository of data characteristics means all parts of the enterprise can know precisely what level of protection sensitive information requires.

When sensitive data is correctly identified as such, organizations build trust with their customers and partners. Security-related Metadata itself becomes a strategic asset, increasing the quality of transactions, reporting, and business analysis, while reducing the cost of protection and associated risks that lost or stolen information cause.

36. A part from security requirements internal to the organization what other strategic goals should a Data security management system address? A：Ensuring the organization doesn't engage in SPAM marketing B：Regulatory requirements for privacy and confidentiality AND Privacy and Confidentiality needs of all stakeholders C：compliance with ISO27001 and HIPPA D：Compliance with ISO29100 and PCI-DSS E：None of these 正确答案：B 你的答案：B 解析：·7.1.2目标和原则1.目标数据安全活动目标，包括以下几个方面：1）支持适当访问并防止对企业数据资产的不当访问。2）支持对隐私、保护和保密制度、法规的遵从。3）确保满足利结相关方对隐私和保密的要求。

42. A security mechanism that searches for customer bank account details in outgoing emails is achieving the goal of A：ensuring stakeholder requirements for openness and transparency are met B：ensuring stakeholder requirements for service design and experience are met C：ensuring stakeholder requirements for confidentiality and privacy are met. D：ensuring stakeholder requirements for concise definitions and usage are met. E：ensuring stakeholder requirements for response time and availability levels are met. 正确答案：C 你的答案：C 解析：7.1.2：1.目标数据安全活动目标，包括以下几个方面：1）支持适当访问并防止对企业数据资产的不当访问。2）支持对隐私、保护和保密制度、法规的遵从。3）确保满足利益相关方对隐私和保密的要求。

53. The stakeholder requirements for privacy and confidentiality are goals found in: A：data quality. B：data security C：data architecture D：document and content management. E：metadata management. 正确答案：B 你的答案：B 解析：7.1.2：1.目标数据安全活动目标，包括以下几个方面：1）支持适当访问并防止对企业数据资产的不当访问。2）支持对隐私、保护和保密制度、法规的遵从。3）确保满足利益相关方对隐私和保密的要求。

Data Security is a collaborative effort involving IT security administrators, datastewards/data governance, internal and external audit teams, and the legal department.

Data Security standards and policies must be applied consistently across theentire organization.

Success in data security management depends on being proactive anddynamic, engaging all stakeholders, managing change, and overcoming organizational or culturalbottlenecks such as traditional separation of responsibilities between information security, informationtechnology, data administration, and business stakeholders.

Roles and responsibilities must be clearly defined, including the ‘chain ofcustody’ for data across organizations and roles.

Security classification for data elements is an essential part of data definitions.

Minimize sensitive/confidential data proliferation, especially tonon-production environments.

20. A weaknesses or defect of system that allows it to be successfully attacked and compromised This is called A：analysis B：replication C：archiving D：auditing E：vulnerability 正确答案：E 你的答案：E 解析： 7.1.3题解：脆弱性（Vulnerability）是系统中容易遭受攻击的弱点或缺陷，本质上是组织防御中的漏洞。某些脆弱性称为漏洞敞口。

43. A weakness or defect in a system that allows it to be successfully attacked and compromised A：vulnerability. B：feature C：chasm D：risk E：threat 正确答案：A 你的答案：A 解析：7.1.3.：1.脆弱性脆弱性（Vulnerability）是系统中容易遭受攻击的弱点或缺陷，本质上是组织防御中的漏洞。某些脆弱性称为漏洞敞口。例如，存在过期安全补丁的网络计

19. A ___ is a potential offensive action that could be taken against an organization A：analysis B：replication C：archiving D：auditing E：threat 正确答案：E 你的答案：E 解析：7.1.3：威胁（Threat）是一种可能对组织采取的潜在进攻行动。威胁包括发送到组织感染病毒的电子邮件附件、使网络服务器不堪重负以致无法执行业务（拒绝服务攻击）的进程，以及对已知漏洞的利用等。威胁可以是内部的，也可以是外部的。他们并不总是恶意的。

47. A denial of service attack 拒绝服务攻击 is typically accomplished by A：emailing virus laden attachments B：interrupting the mains electricity supply. C：corrupting the user name and password D：a stop-work action by the workforce E：flooding the target machine with superfluous requests 正确答案：E 你的答案：E 解析：7.1.3：2.威胁威胁（Threat）是一种可能对组织采取的潜在进攻行动。威胁包括发送到组织感染病毒的电子邮件附件、使网络服务器不堪重负以致无法执行业务（拒绝服务攻击）的进程，以及对已知漏洞的利用等。威胁可以是内部的，也可以是外部的。

17. The term refers both to the possibility of loss and to the thing or condition that poses the potential loss. This term is called A：analysis B：replication C：archiving D：auditing E：Risk 正确答案：E 你的答案：E 解析：7.1.3. 风险（Risk）既指损失的可能性，也指构成潜在损失的事物或条件。

1. Probability that the threat will occur and its likely frequency

2. The type and amount of damage created each occurrence might cause, including damage to reputation

3. The effect damage will have on revenue or business operations

4. The cost to fix the damage after an occurrence

5. The cost to prevent the threat, including by remediation of vulnerabilities

6. The goal or intent of the probable attacker

7. Risks can be prioritized by potential severity of damage 损害程度 to the company, or by likelihood of occurrence 发生可能性,

17. Documents and records should be classified based on the level of confidentiality for information found in the record A：Average B：Highest C：overall D：General E：General 正确答案：B 你的答案：B 解析：9.2.2：（3）处理敏感数据组织有义务通过识别和保护敏感数据来保护隐私。数据安全或数据治理通常会建立保密方案，并确定哪些资产是机密的或受限制的。制作或拼装内容的人必须要应用这些分类。必须根据制度和法律要求将文件、网页和其他内容组件标记为是否敏感。一旦被标记为敏感，机密数据要么被屏蔽，要么在适当的情况下被删除（参见第7章 7.1.3.用户权限内所有数据中的最高安全分类决定了整体的安全分类）。

1. Critical Risk Data (CRD) 关键风险数据

2. High Risk Data (HRD) 高风险数据

3. Moderate Risk Data (MRD) 中风险数据

The Four A's

Monitoring

44. The process of translating plain text into complex codes to hide privileged information is A：enhancement. B：exaggeration C：elimination D：encryption E：encapsulation 正确答案：D 你的答案：D 解析：7.1.3：8.加密（Encryption）是将施文本转换为复杂代稠，以隐藏特权信息、验证传送完整性或验证发送者身份的过程。加密数据不能在没有解密密钥或门法的情况下该取，解密密钥或门法通常单独存储，不能基于同一数据集中的其他数据元素来进行计算，加密方法主要有3种类型，即哈希，对称加密、非对称加密，其复杂程度和密钥结构各不相同。

Hash encryption uses algorithms to convert data into a mathematical representation.

hashing is used as verification of transmission integrity or identity

Message Digest 5 (MD5)

Secure Hashing Algorithm (SHA).

Private-key encryption uses one key to encrypt the data.

Data Encryption Standard (DES)

Triple DES (3DES)

Advanced Encryption Standard (AES)

International Data Encryption Algorithm (IDEA)

Cyphers Twofish

Serpent

In public-key encryption, the sender and the receiver have different keys. The sender uses a public key that is freely available, and the receiver uses a private key to reveal the original data.

Rivest-Shamir-Adelman (RSA) Key Exchange

Diffie-Hellman Key Agreement

PGP (Pretty Good Privacy) is a freely available application of public-key encryption.

21. Obfuscation 混淆 or redaction 编校 of data is the practice of A：selling data B：making information available to the public C：reducing the size of large databases D：making information anonymous or removing sensitive information E：organizing data into meaningful groups 正确答案：D 你的答案：D 解析：7.1.3：9.混淆或脱敏可通过混处理（变得模糊或不明确）或脱敏（删除、打乱或以其他方式更改数据的外观等）的方式来降低数据可用性，同时避免丢失数据的含义或数据与其他数据集的关系。

52. Obfuscation of data is to A：put it in different databases B：make the result clear. C：collect data from obscure sources D：use synonyms for the same term E：make it obscure 晦涩难懂 or unclear. 正确答案：E 你的答案：E 解析：7.1.3：9.混淆或脱敏可通过混淆处理（变得模糊或不明确）或脱敏（删除、打乱或以其他方式更改数据的外观等）的方式来降低数据可用性，同时避免丢失数据的含义或数据与其他数据集的关系。

1. Persistent Data Masking 静态数据脱敏

2. Dynamic Data Masking 动态数据脱敏

3. Masking Methods 脱敏方法

A backdoor refers to an overlooked or hidden entry into a computer system or application.

Any backdoor is a security risk.

A bot (short for robot) or Zombie is a workstation that has been taken over by a malicious hacker using a Trojan, a Virus, a Phish, or a download of an infected file.

A Bot-Net is a network of robot computers (infected machines)

A cookie is a small data file that a website installs on a computer’s hard drive, to identify returning visitors and profile their preferences.

Cookies are used for Internet commerce.

A firewall is software and/or hardware that filters network traffic to protect an individual computer or an entire network from unauthorized attempts to access or attack the system.

A perimeter is the boundary between an organization’s environments and exterior systems. a firewall will be in place between all internal and external environments.

50. A term is the boundary between an organization's environments and exterior systems. This term is called A：analysis B：replication C：archiving D：perimeter E：threat 正确答案：D 你的答案：D 解析：7.1.3：（5）周界（Perimeter）是指组织环境与外部系统之间的边界。通常将防火墙部署在所有内部和外部环境之间。



a DMZ is an area on the edge or perimeter of an organization, with a firewall between it and the organization.

DMZ environments are used to pass or temporarily store data moving between organizations.

25. A term is an area on the edge or perimeter of an organization，with a firewall between it and the organization. This term is called A：analysis B：replication C：archiving D：DMZ E：threat 正确答案：D 你的答案：D 解析：7.1.3：（6）DMZ是非军事区（De-militarized Zone）的简称，指组织边缘或外围区域，在DMZ和组织之间设有防火墙。DMZ环境与Internet互联网之间始终设有防火墙。DMZ环境用于传递或临时存储在组织之间移动的数据。

46. A DMZ is bordered by 2 firewalls. These are between the DMZ and the: A：internet and extranet B：internet; for added security. C：internet and intranet. D：Korean peninsula E：internet and internal systems 正确答案：E 你的答案：C 解析：7.1.3：（6）DMZ是非军事区（De-militarized Zone）的简称，指组织边缘或外围区域。在DMZ和组织之间设有防火墙。DMZ环境与Internet互联网之间始终设有防火墙（图7-3）。DMZ环境用于传递或临时存储在组织之间移动的数据。

A Super User Account is an account that has administrator or root access to a system to be used only in an emergency.

only released in an emergency with appropriate documentation and approvals, and expire within a short time.

24. A term is an account that has administrator or root access to a system to be used only in an emergency. This term is called A：analysis B：replication C：super User Account D：DMZ E：threat 正确答案：C 你的答案：C 解析：7.1.3：（7）超级用户账户超级用户（Super User）账户是具有系统管理员或超级用户访问权限的账户，仅在紧急情况下使用。这些账户的凭据保存要求具有高度安全性，只有在紧急情况下才能通过适当的文件和批准发布，并在短时间内到期。

Key Loggers are a type of attack software that records all the keystrokes that a person types into their keyboard, then sends them elsewhere on the Internet.

Thus, every password, memo, formula, document, and web address is captured.

30. A term is a type of attack software that records all the keystrokes that a person types into their keyboard, then sends them else where on the Internet. This term is called A：analysis B：Key Loggers C：super User Account D：DMZ E：Threat 正确答案：B 你的答案：B 解析：7.1.3：（8）键盘记录器（Key Logger）是一种攻击软件，对键盘上键入的所有击键进行记录，然后发送到互联网上的其他地方。

In Penetration Testing (sometimes called ‘penn test’), an ethical hacker, either from the organization itself or hired from an external security firm, attempts to break into the system from outside, as would a malicious hacker, in order to identify system vulnerabilities.

VPN connections use the unsecured internet to create a secure path or ‘tunnel’ into an organization’s environment

It allows communication between users and the internal network by using multiple authentication elements to connect with a firewall on the perimeter of an organization’s environment.

The tunnel is highly encrypted.

Facility security is the first line of defense against bad actors.

Mobile devices often contain corporate emails，spreadsheets, addresses, and documents that, if exposed, can be damaging to the organization, its employees, or its customers.

Device security standards include:

Each user is assigned credentials to use when obtaining access to a system.

Identity Management Systems 身份管理系统

User ID Standards for Email Systems 邮件系统的用户ID标准

Password Standards 密码标准

Multiple Factor Identification 多因素识别

These insecure methods of communication can be read or intercepted by outside sources

Social media also applies here. Blogs, portals, wikis, forums, and other Internet or Intranet social media should be considered insecure and should not contain confidential or restricted information.

Confidentiality level 保密等级

Regulation 监管要求

The main difference between confidential and regulatory restrictions is where the restriction originates: confidentiality restrictions originate internally, while regulatory restrictions are externally defined.

Another difference is that any data set, such as a document or a database view, can only have one confidentiality level. This level is established based on the most sensitive (and highest classified) item in the data set. however, are additive. A single data set may have data restricted based on multiple regulatory categories. To assure regulatory compliance, enforce all actions required for each category, along with the confidentiality requirements.

1. For general audiences 普通受众公开

2. Internal use only 仅内部使用

3. Confidential 机密

4. Restricted confidential 受限机密

5. Registered confidential 绝密

1. Certain types of information are regulated by external laws, industry standards, or contracts that influence how data can be used, as well as who can access it and for what purposes. As there are many overlapping regulations, it is easier to collect them by subject area into a few regulatory categories or families to better inform data managers of regulatory requirements.

2. Each enterprise, of course, must develop regulatory categories that meet their own compliance needs. Further, it is important that this process and the categories be as simple as possible to allow for an actionable protection capability. When category protective actions are similar, they should be combined into a regulation ‘family’. Each regulatory category should include auditable protective actions. This is not an organizational tool but an enforcement method.

3. Sample Regulatory Families 法规系列举例

4. Industry or Contract-based Regulation 行业法规或基于合同的法规

In granting access to data, the principle of least privilege should be applied. A user, process, or program should be allowed to access only the information allowed by its legitimate purpose. The risk is that users with privileges that exceed the requirements of their job function may abuse these privileges for malicious purpose or accidentally.

Query-level access control is useful for detecting excessive privilege abuse by malicious employees.

automated tools are usually necessary to make real query-level access control functional.

Users may abuse legitimate database privileges for unauthorized purposes.

There are two risks to consider: intentional 故意 and unintentional 无意 abuse.

The partial solution to the abuse of legitimate privilege is database access control that not only applies to specific queries, but also enforces policies for end-point machines using time of day, location monitoring, and amount of information downloaded, and reduces the ability of any user to have unlimited access to all records containing sensitive information unless it is specifically demanded by their job and approved by their supervisor.

Attackers may take advantage of database platform software vulnerabilities to convert access privileges from those of an ordinary user to those of an administrator. Vulnerabilities may occur in stored procedures, built-in functions, protocol implementations, and even SQL statements

Prevent privilege elevation exploits with a combination of traditional intrusion prevention systems (IPS) 入侵防护系统 and query-level access control intrusion prevention

Use of service accounts (batch IDs) and shared accounts (generic IDs) increases the risk of data security breaches and complicates the ability to trace the breach to its source. Some organizations further increase their risk when they configure monitoring systems to ignore any alerts related to these accounts. Information security managers should consider adopting tools to manage service accounts securely

Service Accounts 服务账户

Shared Accounts 共享账户

Software updates and intrusion prevention protection of database assets requires a combination of regular software updates (patches) and the implementation of a dedicated Intrusion Prevention Systems (IPS). 入侵防御系统

An IPS is usually, but not always, implemented alongside of an Intrusion Detection System (IDS). 入侵检测系统

The most primitive form of intrusion protection is a firewall, but with mobile users, web access, and mobile computing equipment a part of most enterprise environments, a simple firewall, while still necessary, is no longer sufficient.

In a SQL injection attack, a perpetrator inserts (or ‘injects’) unauthorized database statements into a vulnerable SQL data channel, such as stored procedures and Web application input spaces. These injected SQL statements are passed to the database, where they are often executed as legitimate commands. Using SQL injection, attackers may gain unrestricted access to an entire database

Mitigate this risk by sanitizing all inputs before passing them back to the server.

It is a long-standing practice in the software industry to create default accounts during the installation of software packages. Some are used in the installation itself. Others provide users with a means to test the software out of the box.

Eliminating the default passwords is an important security step after every implementation.

Backups are made to reduce the risks associated with data loss, but backups also represent a security risk.

Encrypt all database backups. Encryption prevents loss of a backup either in tangible media or in electronic transit. Securely manage backup decryption keys. Keys must be available off-site to be useful for disaster recovery.

29. A term came from an era when finding clever ways to perform some computer task was the goal. This term is called A：analysis B：Hacking C：super User Account D：DMZ E：threat 正确答案：B 你的答案：B 解析：7.1.3：14.黑客行为/黑客“黑客行为“一词产生于以寻找执行某些计算机任务的聪明方法为目标的时代。黑客是在复杂的计算机系统中发现未知操作和路径的人。黑客有好有坏。

49. A term refers to how malicious hackers try to trick people into giving them either information or access this term is called A：analysis B：Hacking C：social engineering D：DMZ E：threat 正确答案：C 你的答案：C 解析：7.1.3.：社会工程（Social Engineering）是指恶意黑客试图诱骗人们提供信息或访问信息的方法。黑客利用所获得的各种信息来说服有关员工他们有合法的请求。有时，黑客会按顺序联系几个人，在每一步收集信息以用于获得下一个更高级别员工的信任。

28. A term refers to any malicious software created to damage change or improperly access a computer or network. This term is called A：Malware B：Hacking C：Social engineering D：DMZ E：threat 正确答案：A 你的答案：A 解析：7.1.3：16.恶意软件是指为损坏、更改或不当访问计算机或网络而创建的软件。

Adware is not illegal, but is used to develop complete profiles

Adware is a form of spyware that enters a computer from an Internet download

install tracking spyware, which is a form of Adware

Spyware refers to any software program that slips into a computer without consent, in order to track online activity.

a Trojan horse refers to a malicious program that enters a computer system disguised or embedded within legitimate software.

A virus is a program that attaches itself to an executable file or vulnerable application and delivers a payload that ranges from annoying to extremely destructive

14. A term is a program that attaches itself to an executable file or vulnerable application and delivers a payload that ranges from annoying to extremely destructive. This term is called A：Adware B：virus C：Social engineering D：DMZ E：threat 正确答案：B 你的答案：B 解析： 7.1.3题解：（4）病毒（Virus）是一种计算机程序，它将自身附加到可执行文件或易受攻击的应用程序上，能造成从让人讨厌到极具破坏性的后果。一旦受感染文件被打开就可执行病毒文件。病毒程序总是需要依附于另一个程序上。下载打开这些受感染的程序可能会释放病毒。

A computer worm is a program built to reproduce and spread across a network by itself

consuming large amounts of bandwidth,

34. A term is a program built to reproduce and spread across a network by itself. This term is called A：Adware B：computer worm C：social engineering D：DMZ E：threat 正确答案：B 你的答案：B 解析：7.1.3：（5）计算机蠕虫（Worm）是一种自己可以在网络中进行复制和传播的程序。受蠕虫感染的计算机将源源不断地发送感染信息。其主要功能是通过消耗大量带宽来危害网络，从而导致网络中断。蠕虫也可能会执行多种其他恶意的活动。

1. Instant Messaging (IM) 即时消息

2. Social Networking Sites 社交网站

3. Spam 垃圾邮件

37. which of the following define the data security touch points in an organization? A：Industry standards wered B：Internal Audit C：Risk Assessment D：Legislation E：Business rules and process workflow 正确答案：E 你的答案：E 解析：7.2.1.：1.业务需求在组织内实施数据安全的第一步是全面了解组织的业务需求。组织的业务需求、使命、战略和规模以及所属行业，决定了所需数据安全的严格程度，例如，美国的金融证券行业受到高度监管，需要保持严格的数据安全标准。相比之下，一个小型零售企业可能不大会选择大型零售商的同类型数据安全功能，即使他们都具有相似的核心业务活动。通过分析业务规则和流程，确定安全接触点。业务工作流中的每个事件都可能有自己的安全需求。

Sarbanes-Oxley Act of 2002

Health Information Technology for Economic and Clinical Health (HITECH) Act, enacted aspart of the American Recovery and Reinvestment Act of 2009

Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Regulations

Gramm-Leach-Bliley I and II

SEC laws and Corporate Information Security Accountability Act

Homeland Security Act and USA Patriot Act

Federal Information Security Management Act (FISMA)

California: SB 1386, California Security Breach Information Act

Data Protection Directive (EU DPD 95/46/) AB 1901, Theft of electronic files or databases

Canadian Bill 198

The CLERP Act of Australia

Payment Card Industry Data Security Standard (PCI DSS), in the form of a contractual agreement forall companies working with credit cards

EU: The Basel II Accord, which imposes information controls for all financial institutions doingbusiness in its related countries

US: FTC Standards for Safeguarding Customer Info

Global policies for employee access to facilities and other assets, emailstandards and policies, security access levels based on position or title, and security breach reportingpolicies

Directory structures standards, password policies, and an identity managementframework

Categories for individual application, database roles, user groups, andinformation sensitivity

32. Definition of data security policies should be A：Based on defined standards and templates B：A collaborative effort between Business and lT C：Reviewed by external Regulators D：Conducted by external consultants E：Determined by external Regulators 正确答案：B 你的答案：B 解析：正确答案：B来源：7.2.2题解：公司的制度通常具有法律含义。法院可认为，为支持法律监管要求而制定的制度是该组织为法律遵从而努力的内在组成部分。如发生数据泄露事件，未能遵守公司制度可能会带来负面的法律后果。制定安全制度需要IT安全管理员、安全架构师、数据治理委员会、数据管理专员、内部和外部审计团队以及法律部门之间的协作。数据管理专员还必须与所有隐私官（萨班斯-奥克斯利法案主管、HIPAA官员等）以及具有数据专业知识的业务经理协作，以开发监管类元数据并始终如一地应用适当的安全分类。所有数据法规遵从行动必须协调一致，以降低成本、工作指令混乱和不必要的本位之争。

Confidentiality classification is an important Metadata characteristic, guiding how users are granted access privileges.

A growing number of highly publicized data breaches, in which sensitive personal information has been compromised, have resulted in data-specific laws to being introduced.

Role groups enable security administrators to define privileges by role and to grant these privileges by enrolling users in the appropriate role group.

There are two ways to define and organize roles: as a grid (starting from the data), or in a hierarchy (starting from the user).

An enterprise data model is essential to identifying and locating sensitive data.

Data masking can protect data even if it is inadvertently exposed

Relational database views can used to enforce data security levels

Reporting on access is a basic requirement for compliance audits.

Monitoring also helps detect unusual, unforeseen, or suspicious transactions that warrant investigation.

It can be implemented within a system or across dependent heterogeneous systems.

Monitoring can be automated or executed manually or executed through a combination of automation and oversight.

Lack of automated monitoring represents serious risks:

implement a network-based audit appliance，has the following benefits

1. Measuring compliance with authorization standards and procedures

2. Ensuring that all data requirements are measurable and therefore auditable (i.e., assertions like “becareful” are not measurable)

3. Ensuring regulated data in storage and in motion is protected using standard tools and processes

4. Using escalation procedures and notification mechanisms when potential non-compliance issues arediscovered, and in the event of a regulatory compliance breach

Internal audits of activities to ensure data security and regulatory compliance policies are followed should be conducted regularly and consistently.

Internal or external auditors may perform audits.

auditors must be independent of the data and / or process involved in the audit to avoid any conflict of interest and to ensure the integrity of the auditing activity and results.

Auditing is not a fault-finding mission. The goal of auditing is to provide management and the data governance council with objective, unbiased assessments, and rational, practical recommendations.

audits often include performing tests and checks, such as:

Auditing data security is not a substitute for management of data security. It is a supporting process that objectively assesses whether management is meeting goals.

1. Percentage of enterprise computers having the most recent security patches installed

2. Percentage of computers having up-to-date anti-malware software installed and running

3. Percentage of new-hires who have had successful background checks

4. Percentage of employees scoring more than 80% on annual security practices quiz

5. Percentage of business units for which a formal risk assessment analysis has been completed

6. Percentage of business processes successfully tested for disaster recovery in the event of fire,earthquake, storm, flood, explosion or other disaster

7. Percentage of audit findings that have been successfully resolved

1. Performance metrics of all security systems

2. Background investigations and results

3. Contingency planning and business continuity plan status

4. Criminal incidents and investigations

5. Due diligence examinations for compliance, and number of findings that need to be addressed

6. Informational risk management analysis performed and number of those resulting in actionablechanges

7. Policy audit implications and results, such as clean desk policy checks, performed by evening-shiftsecurity officers during rounds

8. Security operations, physical security, and premises protection statistics

9. Number of documented, accessible security standards (a.k.a. policies)

10. The motivation of relevant parties to comply with security policies can also be measured

11. Business conduct and reputational risk analysis, including employee training

12. Business hygiene and insider risk potential based on specific types of data such as financial, medical,trade secrets, and insider information

13. Confidence and influence indicators among managers and employees as an indication of how datainformation security efforts and policies are perceived

provide qualitative data that needs to be fed back to appropriate business units to make them more aware of their accountability.

identify unmanaged exposures that need correction. Determine the absenceor degree of measurable improvement in risk exposure or conformance to policy by conducting follow-up testing of the awareness initiative to see how well the messages got across.

identify the level of security awareness. Also, measure the number of employees who have successfully completed security awareness training within targeted populations.

provide a rich source of informationon gaps in security awareness. Measures may include how much vulnerability has been mitigated.

involve specific machines that work with confidential and regulatedinformation to assess the effectiveness of security patching. (An automated patching system is advisedwhenever possible.)

of specific data types and information systems that, if made inoperable, would have profound impact on the enterprise.

of mishaps, hacks, thefts, or disasters related to data loss, compromise, orcorruption.

related to certain categories of regulated information, and remediationpriority ranking.

Risks associated with Point of Sale devices would be included in the risk profile of the financial payment system.

performed based on the likelihood of an attack against certain valuable data resources and the media through which they travel.

of specific parts of the business process where sensitive information couldbe exposed, either accidentally or intentionally.

13. The ability of a photo app to share its images with various social media applications is an example of: A：replication B：metadata C：integration D：rendering 呈现 E：interoperability 正确答案：E 你的答案：E 解析：8.1：数据集成和互操作的解决方案提供了大多数组织所依赖的基本数据管理职能：4）在不同应用程序或组织之间数据共享。

7. The creation of overly complex enterprise integration over time is often a symptom of: A：multiple data warehouses. B：multiple data owners C：multiple integration technologies. D：multiple metadata tags. E：multiple application coding languages 正确答案：C 你的答案：C 解析：8.1.1：对企业来说，管理数据集成的复杂性以及相关成本是建立数据集成架构的原因。企业级的数据集成设计远远比分散的或点对点的解决方案效率更高、成本更低。在应用程序之间采用点对点的解决方案，可能产生出成干上万的接口，即使最有效率和最有能力的IT支撑组织也会被迅速拖垮。

An enterprise design of data integration is demonstrably more efficient and cost effective than distributed or point-to-point solutions.

Data hubs such as data warehouses and Master Data solutions help to alleviate this problem

using enterprise data integration techniques such as hub-and-spoke integration and canonical message models.

Standard tool implementations can reduce support and staffing costs and improve the efficiency of troubleshooting efforts.

Enterprise-level DII systems enable re-use of code to implement compliance rules and simplify verification of compliance.

these are the essential steps in moving data around and between applications and organizations.

The extract process includes selecting the required data and extracting it from its source.

Extracted data is then staged, in a physical data store on disk or in memory.

Ideally, if this process executes on an operational system, it is designed to use as few resources as possible, in order to avoid negatively affecting the operational processes.

The transform process makes the selected data compatible with the structure of the target data store.

Transformation includes cases

Examples of transformation

Transformation may be performed in batch or real-time, either physically storing the result in a staging area,

Data resulting from the transformation stage should be ready to integrate with data in the target structure.

The load step of ETL is physically storing or presenting the result of the transformations in the target system.

Depending on the transformations performed, the target system’s purpose, and the intended use, the data may need further processing to be integrated with other data, or it may be in a final form, ready to present to consumers.



If the target system has more transformation capability than either the source or an intermediary application system, the order of processes may be switched to ELT – Extract, Load, and Transform.

A synonym for transformation, a mapping is both the process of developing the lookup matrix from source to target structures and the result of that process.

A mapping defines the sources to be extracted, the rules for identifying data for extraction, targets to be loaded, rules for identifying target rows for update (if any), and any transformation rules or calculations to be applied.

Many data integration tools offer visualizations of mappings that enable developers to use graphical interfaces to create transformation code.

1. 10. Integrating two data stores using batch or real-time synchronous approaches results in a difference in A：data quality B：lethargy 昏睡 C：latency 延迟 D：timestamping E：source of truth 正确答案：C 你的答案：C 解析：8.1.3：2.时延（Latency）是指从源系统生成数据到目标系统可用该数据的时间差。不同的数据处理方法会导致不同程度的数据延迟，延迟可以是很高（批处理）或较高（事件驱动），甚至是非常低（实时同步）。

2. Batch 批处理

3. Change Data Capture 变更数据捕获

4. Near-real-time and Event-driven 准实时和时间驱动

5. Asynchronous 异步

6. Real-time, Synchronous 实时，同步

7. Low Latency or Streaming 低延迟或流处理

Replication utilities work optimally when source and target data sets are exact copies of each other. Differences between source and target introduce risks to synchronization

a shared message format is a major undertaking, having a canonical model can significantly reduce the complexity of data interoperability in an enterprise, and thus greatly lower the cost of support

1. Point-to-point 点到点

2. Hub-and-spoke 中心辐射型

3. Publish - Subscribe 发布与订阅

4. 8. Three common interaction models for data integration are A：point to point，wheel and spoke 车轮和辐条，public and share B：record and pass, copy and send, read and write C：point to point，hub and spoke，publish and subscribe D：plane to point harvest and seed 平面点收播种, publish and subscribe E：straight copy, curved copy round about copy 正确答案：C 你的答案：C 解析：8.1.3

Coupling describes the degree to which two systems are entwined.

Orchestration 编排 is the term used to describe how multiple processes are organized and executed in a system.

Process Controls 流程控制 are the components that ensure shipment, delivery, extraction, and loading of data is accurate and complete.

In an enterprise application integration model (EAI), software modules interact with one another only through well-defined interface calls (application programming interfaces – APIs).

Data stores are updated only by their own software modules and other software cannot reach in to the data in an application but only access through the defined APIs.



An Enterprise Service Bus is a system that acts as an intermediary between systems, passing messages between them. Applications can send and receive messages or files using the ESB, and are encapsulated from other processes existing on the ESB.

An example of loose coupling, the ESB acts as the service between the applications.

Most mature enterprise data integration strategies utilize the idea of service-oriented architecture (SOA), where the functionality of providing data or updating data (or other data services) can be provided through well-defined service calls between applications.

SOA enables application independence and the ability for an organization to replace systems

The goal of service-oriented architecture is to have well-defined interaction between self-contained software modules.

Event processing is a method of tracking and analyzing (processing) streams of information (data) about things that happen (events), and deriving a conclusion from them.

Complex event processing (CEP) combines data from multiple sources to identify meaningful events (such as opportunities or threats) to predict behavior or activity and automatically trigger real-time response, such as suggesting a product for a consumer to purchase. Rules are set to guide the event processing and routing.

Supporting complex event processing requires an environment that can integrate vast amounts of data of various types.

Data Federation provides access to a combination of individual data stores, regardless of structure.

Data Virtualization enables distributed databases, as well as multiple heterogeneous data stores, to be accessed and viewed as a single database.

Software-as-a-service (SaaS) is a delivery and licensing model.

One definition of Data-as-a-Service (DaaS) is data licensed from a vendor and provided on demand, rather than stored and maintained in the data center of the licensing organization

Cloud-based integration (also known as integration platform-as-a-service or IPaaS) is a form of systems integration

Prior to the emergence of cloud computing, integration could be categorized as either internal or business to business (B2B).

Cloud-based integration involves interacting with the SaaS application data to be integrated using SOA interaction services.

An exchange pattern defines a structure for data transformations needed by any system or organization exchanging data.

Data needs to be mapped to the exchange specification.

also necessary to gather any relevant laws or regulations regarding the data to be used

Requirements must also account for organizational policy on data retention and other parts of the data lifecycle

determine the type of DII interaction model, which then determines the technology and services necessary to fulfill the requirements.

How the data under analysis is acquired or created by the organization,

where it moves and is changed within the organization,

how the data is used by the organization for analytics, decision-making, or event triggering.

Detailed lineage can include the rules according to which data is changed, and the frequency of changes.

4. Data profiling A：provides guidance to turn bad habits into good habits B：creates data models with a precise set of symbols and text C：aids requirements analysis D：examines existing data to understand content and structure. E：Above is all right 正确答案：D 你的答案：D 解析：8.2.1.题解：4.剖析数据理解数据的内容和结构是实现数据集成成功的关键。数据剖析（Data Profiling）有助于实现这一目标

6. which of these is not an expected role of a data Quality oversight board? A：Establishing communications feedback mechanisms B：Setting data quality improvement priorities C：Producing certification compliance policies D：Developing maintaining data quality E：Data profiling analysis 正确答案：E 你的答案：E 解析：8.2.1.题解：4.剖析数据理解数据的内容和结构是实现数据集成成功的关键。数据剖析（Data Profiling）有助于实现这一目标

Actual data structure and contents always differ from what is assumed

Sometimes differences are small; other times they are large enough to derail an integration effort.

profiling can help integration teams discover these differences and use that knowledge to make better decisions about sourcing and design.

1. Data format as defined in the data structures and inferred from the actual data

2. Data population, including the levels of null, blank, or defaulted data

3. Data values and how closely they correspond to a defined set of valid values

4. Patterns and relationships internal to the data set, such as related fields and cardinality rules

5. Relationships to other data sets

16. A Term is a form of data analysis used to inspect data and assess quality. this term is called A：Data Profiling B：Data parsing C：Data Modeling D：Data analysis E：Data Cleansing 正确答案：A 你的答案：A 解析：8.2.1.题解：4.剖析数据理解数据的内容和结构是实现数据集成成功的关键。数据剖析（Data Profiling）有助于实现这一目标

four categories: definitions of business terms, facts relating terms to each other, constraints or action assertions 断言, and derivations 派生.

1. Assess data in potential source and target data sets

2. Direct the flow of data in the organization

3. Monitor the organization’s operational data

4. Direct when to automatically trigger events and alerts

The business analyst or data steward can extract the rules from existing documentation

business rules include match rules 匹配规则, merge rules 合并, survivorship rules 存活, and trust rules 信任.

the business rules also include data retention rules 保留.

1. Select Interaction Model 选择交互模式

2. Design Data Services or Exchange Patterns 设计数据服务或交换方式

such as Master Data Management hubs, data warehouses and marts, and operational data stores

such as interfaces, message layouts, and canonical models

1. Indicates the technical format of the source and target

2. Specifies transformations required for all intermediate staging points between source and target

3. Describes how each attribute in a final or intermediate target data store will be populated

4. Describes whether data values need to be transformed; for example, by looking up the source value in a table that indicates the appropriate target value

5. Describes what calculations are required

1. Batch data integration orchestration will indicate the frequency of the data movement and transformation.

2. Real-time data integration orchestration is usually triggered by an event, such as new or updated data.

Batch data flows will be developed in a scheduler (usually the enterprise standard scheduler - CTRL-M) that will manage the order, frequency, and dependency of executing the data integration pieces that have been developed.

Migration is not quite a one-time process, as it needs to be executed for testing phases as well as final implementation.

because programmers are told to simply move the data; they do not engage in the analysis and design activities required for data integration. When data is migrated without proper analysis, it often looks different from the data that came in through the normal processing. Or the migrated data may not work with the application as anticipated.

1. Preparation of the historical data about an individual, organization, product, or market and pre-population of the predictive models

2. Processing the real-time data stream to fully populate the predictive model and identify meaningfulevents (opportunities or threats)

3. Executing the triggered action in response to the prediction

Availability of data requested

Volumes of data transported and transformed

Volumes of data analyzed

Speed of transmission

Latency between data update and availability

Latency between event and triggered action

Time to availability of new data sources

Cost of developing and managing solutions

Ease of acquiring new data

Complexity of solutions and operations

Number of systems using data integration solutions

32. Integrating data security with document and content management knowledge areas guides the implementation of: A：appropriate access and authorization to unstructured data B：appropriate privacy controls on data marts. C：straight-through processing for NoSQL queries D：fitness for purpose metrics for unstructured data E：appropriate access and authorization to structured data 正确答案：A 你的答案：B 解析：9.1. 文件和内容管理是指针对存储在关系型数据库之外的数据和信息的采集、存储、访问和使用过程的管理。它的重点在于保持文件和其他非结构化或半结构化信息的完整性，并使这些信息能够接访问。

Laws and regulations require that organizations maintain records of certain kinds of activities

Good records management is necessary for business continuity. It also enables an organization to respond in the case of litigation.

E-discovery is the process of finding electronic records that might serve as evidence in a legal action.

Gaining efficiencies is a driver for improving document management.

29. A goal of Document and Content Management' is to ensure effective and efficient retrieval and use of A：data and information in unstructured formats B："data but not information in unstructured formats" C："information but not data in unstructured formats." D：data and information in structured formats E：data and information in relational formats 正确答案：A 你的答案：A 解析：9.1.2题解：实施文件和内容管理最佳实践的目标，包括：1）确保能够高速有效地采集和使用非结构化的数据和信息。2）确保结构化和非结构化数据之间的整合能力。3）遵守法律义务并达到客户预期。

An organization shall assign a senior executive to appropriate individuals, adopt policies and processes to guide staff, and ensure program auditability.

An information governance program shall be constructed so the records and information generated or managed by or for the organization have a reasonable and suitable guarantee of authenticity and reliability.

An information governance program shall be constructed to ensure a reasonable level of protection to information that is personal or that other wise requires protection.

An information governance program shall be constructed to comply withapplicable laws and other binding authorities, as well as the organization’s policies.

An organization shall maintain its information in a manner that ensurestimely, efficient, and accurate retrieval of its information.

An organization shall retain its information for an appropriate time, takinginto account all operational, legal, regulatory and fiscal requirements, and those of all relevant binding authorities.

9. Regulatory data retention requirements drive the need to keep data for set periods for A：submitting datasets to regulators B：historical reporting C：customer analytics. D：legal obligations. E：alternate backup sources 正确答案：D 你的答案：D 解析： 9.1.2题解：6）保留原则（Retention）。组织的信息应保留适当的时间，并考虑所有运营、法律、监管和财政以及其他所有相关约束的要求。

An organization shall provide secure and appropriate disposition of information in accordance with its policies, and, applicable laws, regulations and other bindingauthorities.

An organization shall document its policies, processes and activities,including its information governance program,in a manner that is available to and understood by staffand appropriate interested parties.

Content also has a lifecycle. In its completed form, some content becomes a matter of record for an organization. Official records are treated differently from other content.

Content management includes the processes, techniques, and technologies for organizing, categorizing, and structuring information resources so that they can be stored, published, and reused in multiple ways.

Content management is particularly important in websites and portals, but the techniques of indexing based on keywords and organizing based on taxonomies can be applied across technology platforms. When the scope of content management includes the entire enterprise, it is referred to as Enterprise Content Management (ECM).企业内容管理

Metadata is essential to managing unstructured data, both what is traditionally thought of as content and documents and what we now understand as ‘Big Data’. Without Metadata, it is not possible to inventory and organize content. Metadata for unstructured data content is based on:

the maintenance of Metadata for unstructured data becomes the maintenance of a cross-reference between various local patterns 本地模式 and the official set of enterprise Metadata

Content modeling is the process of converting logical content concepts into content types, attributes, and data types with relationships.

There are two levels

The level of detail in the model depends on the granularity 颗粒度 desired for reuse and structure.

They support adaptive content, which is format-free and device-independent.

The models become the specifications for the content implemented in such structures such as XML schema definition (XSDs), forms, or stylesheets 样式表.

Delivery methods include web pages, print, and mobile apps as well as eBooks with interactive video and audio.

Content delivery systems are ‘push’, ‘pull’, or interactive.

A controlled vocabulary is necessary to systematically organize documents, records, and content. Vocabularies range in complexity from simple lists or pick lists, to the synonym rings or authority lists, to taxonomies, and, the most complex, thesauri and ontologies.

An example of a controlled vocabulary is the Dublin Core 都柏林核心元素集, used to catalog publications.

Defined policies control over who adds terms to the vocabulary (e.g., a taxonomist or indexer 分类学家, or librarian 索引管理员).

folksonomy 大众分类法，通俗分类法

Vocabulary management is the function of defining, sourcing, importing, and maintaining any given vocabulary.

Key questions to enable vocabulary management focus on uses, consumers, standards, and maintenance:

preferred vocabularies 首选词汇表 would still be defined in an organization

A vocabulary view is a subset of a controlled vocabulary, covering a limited range of topics within the domain of the controlled vocabulary.

A micro-controlled vocabulary is a vocabulary view containing highly specialized terms not present in the general vocabulary.

Lists of terms are just that: lists. They do not describe relationships between the terms.

Pick lists are often buried in applications.

defines a term as “One or more words designating a concept (ANSI/NISO Z39.19-2005)

Term Management includes specifying how terms are initially defined and classified and how this information is maintained once it starts being used in different systems.

defines a preferred term as one of two or more synonyms or lexical variants selected as a term for inclusion in a controlled vocabulary.

Term management includes establishing relationships between terms within a controlled vocabulary. There are three types of relationships:

A synonym ring is a set of terms with roughly equivalent meaning.

An authority list is a controlled vocabulary of descriptive terms designed to facilitate retrieval of information within a specific domain or scope.

Taxonomy is an umbrella 总称 term referring to any classification or controlled vocabulary

In content management, a taxonomy is a naming structure containing a controlled vocabulary used for outlining topics and enabling navigation and search systems.

Taxonomies can have different structures:

Taxonomies are particularly important for presenting and finding information on websites, as many search engines rely on exact word matches and can only find items tagged or using the same words in the same way.

Classification schemes are codes that represent controlled vocabulary.

Folksonomies 大众分类法 are classification schemes for online content terms and names obtained through social tagging 社交标签.

14. Data quality includes all of the following EXCEPT A：data quality requirements B：timeliness C：data quality rules. D：data classification E：Data Accuracy 正确答案：D 你的答案：B 解析：9.1.3：在内容管理中，分类法是一种命名结构，包含用于概述主题、启用导航和搜索系统的受控词表。分类法有助于减少歧义并控制同义词。层次分类法包含了对素引者和搜奈者都有帮助的多种类型的父/子关系。

A thesaurus is type of controlled vocabulary used for content retrieval 内容检索. It combines characteristics of synonym lists and taxonomies.

Thesauri can be used to organize unstructured content, uncover relationships between content from different media, improve website navigation, and optimize search.

Standards that provide guidance on creating thesauri include ISO 25964 and ANSI/NISO Z39.19. 10.2.2.1.5 Ontologies.

An ontology is a type of taxonomy that represents a set of concepts and their relationships within a domain.

Ontology languages such as Resource Description Framework Schema (RDFS) are used to develop ontologies by encoding the knowledge about specific domains

Ontologies describe classes (concepts), individuals (instances), attributes, relations, and events.

There are two key differences between a taxonomy (like a data model) and an ontology:

While taxonomy management evolved under the Library Sciences, today the art and science of taxonomy and ontology management fall under the semantics management space 纳入语义管理领域.

common pitfalls 常见陷阱

Documents can communicate and share information and knowledge. Examples of documents include procedures, protocols, methods, and specifications.

Only a subset of documents will be designated as records.

16. which statement best describes the relationship between documents and records? A：Documents are a sub-set of records B：Documents and records are not related C：Documents and records are the same thing D：Documents are written and records are audio E：Records are a sub-set of documents 正确答案：E 你的答案：E 解析： 9.1.3.3 只有部分文件才能称为档案

Document management encompasses the processes, techniques, and technologies for controlling and organizing documents and records throughout their lifecycle.

Managing the lifecycle of documents and records includes:

Documents are often developed within a hierarchy with some documents more detailed than others are.

Document management includes records management. Managing records has special requirements

Well-prepared records have characteristics such as:

Many records exist in both electronic and paper formats. Records Management requires the organization to know which copy (electronic or paper) is the official ‘copy of record’ to meet record keeping obligations. Once the copy of record is determined, the other copy can be safely destroyed.

Digital Asset Management (DAM) is process similar to document management that focuses on the storage, tracking and use of rich media documents like video, logos, photographs, etc.

Examples include the UK Bribery Act 英国反贿赂法, Dodd-Frank Act 多德-弗兰克法案, Foreign Account Tax Compliance Act (FATCA) 外国账户税收合规法案, Foreign Corrupt Practices Act 反海外腐败法, EU Data Protection Regulations and Rules 欧盟数据保护条例和细则, global anti-trust regulations 全球反垄断的法案, sector-specific regulations 特定行业法规, and local court procedural rules.

30. A legal term is a legal term that refers to pre-trial 预审 phase of a lawsuit where both parties request information from each other to find facts for the case and to see how strong the arguments are on either side this term is called A：Taxonomies B：GDPR C：Discovery 电子取证 D：FRCP美国联邦民事诉讼规则 E：EDRM 正确答案：C 你的答案：C 解析：9.1.3：电子取证“取证”（Discovery）是一个法律术语，指诉讼的预审阶段，双方当事人互相要求对方提供信息，以查明案件事实，并了解双方的论点有多强。

LHN includes identifying information that may be requested in a legal proceeding, locking that data or document down to prevent editing or deletion, and then notifying all parties in an organization that the data or document in question is subject to a legal hold.



The EDRM model assumes that data or information governance is in place.

The model includes eight e-discovery phases that can be iterative.

1. Controlled vocabularies 受控词表

2. Taxonomies and ontologies 分类法和本体

3. Navigation maps 导航地图

4. Metadata maps 元数据映射

5. Search functionality specifications 搜索功能规格

6. Use cases 用例

7. User flows 用户流

Search functionality requires several components: search engine software proper, spider software that roams the Web 漫游网络的爬虫 and stores the Uniform Resource Locators (URLs) of the content it finds, indexing of the encountered keywords and text, and rules for ranking.

Semantic objects 语义对象 are things represented in the model.

Bindings 语义约束 represent associations or association classes in UML.

Storage, integrity, security, content quality, access, and effective use guide the management of unstructured data.

Unstructured data requires data governance, architecture, security Metadata, and data quality.

25. The addition of workflow to a content management system will : A：enable the controlled review and approval of documents B：restructure an enterprise glossary. C：enforce the controlled review and approval of database designs D：implement a data warehouse landing zone E：allow the approval of system access requests 正确答案：A 你的答案：C 解析：9.1.3：11.工作流应该通过一个工作流（Workflow）管理内容开发，以确保内容按时创建并获得适当的批准。工作流组件可以包括创建、处理、路由、规则、管理、安全性、电子签名、截止日期、升级（如果出现问题）、报告和交付等过程。

The workflow needs to be repeatable, ideally containing process steps common across a variety of content.

Alignment 对齐 of the stakeholders and distribution points (including technology) is important.

Records management starts with a clear definition of what constitutes a record.

Managing electronic records requires decisions about where to store current, active records and how to archive older records.

Planning for content management should directly support the organization’s approach to providing relevant and useful content in an efficient and comprehensive manner.

A plan should account for content drivers (the reasons content is needed), content creation and delivery.

A content strategy should start with an inventory of current state and a gap assessment.

1. Scope and compliance with audits

2. Identification and protection of vital records

3. Purpose and schedule for retaining records (a.k.a retention schedule)

4. How to respond to information hold orders (special protection orders); these are requirements forretaining information for a lawsuit, even if retention schedules have expired

5. Requirements for onsite and offsite storage of records

6. Use and maintenance of hard drive and shared network drives

7. Email management, addressed from content management perspective

8. Proper destruction methods for records (e.g., with pre-approved vendors and receipt of destructioncertificates)

Many organizations are developing policies to respond to new media.

especially if employees post in the course of conducting business using organizational accounts.

5. An organization's social media policy, if implemented. MUST map to its A：corporate governance B：employee security policy. C：mission statement. D：human resources policy. E：none 正确答案：D 你的答案：B 解析：9.2.2：和人力资源相关。（1）社交媒体制度（Policy）除了这些常规的话题外，许多组织正在制定应对新媒体的制度。例如，组织必须明确在Facebook、Twitter、Linkedln、聊天室、博客、维基或在线论坛上发布的社交媒体内容是否构成档案？特别是员工在使用组织账户开展业务的过程中发布的内容。

Since the pendulum is swinging towards user driven IT with BYOD (bring-your-own-devices), BYOA (bring-your-own-apps), and WYOD (wear-your-own-devices), the content and records management functions need to work with these scenarios in order to ensure compliance, security and privacy.

Organizations are legally required to protect privacy by identifying and protecting sensitive data.

Organizations should prepare for the possibility of litigation requests through proactive e-discovery. (Hope for the best; prepare for the worst.)

Some social media platforms offer the capability of capturing records

Web crawlers can capture versions of websites

Web capture tools, application-programming interfaces (APIs), and RSS feeds can capture content or social media export tools.

media records can also be captured manually or via predefined, automated workflows.



1. Formal control 正式控制 requires formal change initiation, thorough evaluation for impact, decision by achange authority, and full status accounting of implementation and validation to stakeholders

2. Revision control 修订控制 is less formal, notifying stakeholders and incrementing versions when a change isrequired

3. Custody control 托管控制 is the least formal, merely requiring safe storage and a means of retrieval

1. Cost of providing and updating the asset

2. Project impact, if changes will have significant cost or schedule consequences

3. Other consequences of change to the enterprise or project

4. Need to reuse the asset or earlier versions of the asset

5. Maintenance of a history of change (when required by the enterprise or the project)

7. "When defining your business continuity plan，which of the following should one consider doing? " A：Write a report and discuss with management the required budget B："Determine the risk，probability and impact，check document backup frequency" C："Have the contracts in place to acquire new hardware in case of technical problems，define policies" D：Make sure that the data is retained sufficiently long check that critical data is encrypted check access rights E：Consider written policies and procedures，impact mitigating measures，required recovery time and acceptable amount of disruption，the criticality of the documents 正确答案：E 你的答案：B 解析：9.2.4. 业务连续性计划（或灾难恢复计划）包含书面制度、程序和信息，旨在缓解对组织数据（包括文件）威胁的影响。在发生灾难时，尽快恢复这些数据，同时尽量减少中断。

1. Policies are not adequate

2. One person’s non-valued-added information is another’s valued information

3. Inability to foresee future possible needs for current non-value-added physical and / or electronicrecords

4. There is no buy-in for Records Management

5. Inability to decide which records to delete

6. Perceived cost of making a decision and removing physical and electronic records

7. Electronic space is cheap. Buying more space when required is easier than archiving and removalprocesses

8. 27. which of the following is a reason why organizations do not dispose 丢掉 of non-value-adding information? A：Storage is cheap and easily expanded B：The information is never out of date. C：The organization's data quality benchmark diminishes D：Data modelling the content is hard to reproduce E：the metadata repository can not be updated 正确答案：A 你的答案：A 解析：9.2.4. 题解：无附加值的信息应该从组织的资产中移除并处理掉，以避免浪费实体和电子空间以及与其维护相关的成本。超过法定时限保留档案也是存在风险的，在诉讼时仍能发现这些信息。然而，许多组织并没有优先删除无附加值的信息，这是因为：1）制度不适用。2）对某一个人来说是无附加值信息，但对另一个人来说却是有价值的信息。3）无法预见当前的无附加值实体和/或电子档案未来可能的需求。4）对档案管理的不认可。5）无法决定删除哪些档案。6）做决定与移除实体和电子档案的感知成本。7）电子空间很便宜，购买更多的空间比归档和移除过程更容易。



1. Defining organizational drivers and identifying the stakeholders that comprise the ‘why’ of document /records management

2. Gathering data on the process (the ‘how’), once it is determined what to examine / measure and whattools to use (such as standards, benchmarks, interview surveys)

3. Reporting the outcomes

4. Developing an action plan of next steps and timeframes

Document management systems commonly provide storage, versioning, security, Metadata Management, content indexing, and retrieval capabilities.

1. XML provides the capability of integrating structured data into relational databases with unstructureddata.

2. XML can integrate structured data with unstructured data in documents, reports, email, images,graphics, audio, and video files. Data

3. XML also can build enterprise or corporate portals, (Business-to-Business [B2B], Business-to-Customer [B2C]), which provide users with a single access point to a variety of content.

4. XML provides identification and labeling of unstructured data / content so that computer applicationscan understand and process them

a collection of unordered name / value pairs 无序 名称/值 配对 的集合 known as objects 对象

an ordered list of values 值的有序集合 realized as an array. 数组

An alternative to XML, JSON is used to transmit data between a server and web application

The RDF resources are saved in a triplestore

Usually the subject-predicate-object is each described by a URI (Uniform Resource Identifier), 统一资源标识符

Any type of classification, taxonomy, or thesaurus can be represented in SKOS.

1. Level 1 Sub-Standard 低于标准的

2. Level 2 In Development 发展中的

3. Level 3 Essential 基本的

4. Level 4 Proactive 积极的

5. Level 5 Transformational 完成变革的

1. DoD 5015.2 Electronic Records Management Software Applications Design Criteria Standard

2. ISO 16175, Principles and Functional Requirements for Records in Electronic Office Environments

3. The Model Requirements for the Management of Electronic Records (MoReq2)

4. The Records Management Services (RMS) specification from the Object Management Group (OMG)

aligned with the corporate legal function along with the e-discovery function

aligned with marketing or an operational support group to improve operational efficiency

Percentage of total documents and email per user identified as corporate records

Percentage of the identified corporate records declared as such and put under records control

Percentage of total stored records that have the proper retention rules applied

ERDM also publishes a Metrics Model for e-discovery metrics. The primary elements of Volume, Time, and Cost are in the center surrounded by the seven aspects of e-discovery work (Activities, Custodians, Systems, Media, Status, Format, and QA) which affect the outcome of the center elements.

Tangible 有形的 benefits include increased productivity, cost reduction, improved information quality, and improved compliance.

Intangible 无形的 benefits include improved collaboration, and simplification of job routines and workflow.

Program metrics 规划指标 include number of ECM projects, adoption, and user satisfaction levels

Operational metrics 运营指标 include the typical system type KPIs, such as the amount of downtime, number of users, etc.

1. Financial KPIs can include the cost of ECM system, reduced costs related to physical storage, andpercentage decrease in operational costs.

2. Customer KPIs can include percentage incidents resolved at first contact and number of customercomplaints.

3. KPIs representing more effective and productive internal business processes can include percentage ofpaperwork reduced, percentage of error reduction using workflow and process automation.

4. Training KPIs can include number of training sessions for management and non-management.

5. Risk mitigation KPIs can include reduction of discovery costs, and number of audit trails tracking e-discovery requests.