A recent data breach revealed that a company has a number of files containing customer data across its storage environment. These files are individualized for each employee and are used in tracking various customer orders, inquiries, and issues. The files are not encrypted and can be accessed by anyone. The senior management team would like to address these issues without interrupting existing processes.
Which of the following should a security architect recommend?
Consolidating the customer data into a CRM application helps in centralizing and securely managing customer records. A CRM system can implement robust access controls, ensuring that only authorized personnel can access specific customer data. It can integrate with existing processes such as tracking customer orders, inquiries, and issues, ensuring continuity of operations while enhancing the security of customer information through built-in encryption and other security features.
A CRM application is a type of software that helps organizations manage customer relationships and interactions, including storing and organizing customer data. By consolidating the customer data files into a CRM application and implementing proper access controls, the company can ensure that the data is protected and that only authorized employees have access to it. The security architect should recommend that the CRM application be configured to provision access based on the process and need, so that employees only have access to the data that they need to perform their duties. This can help reduce the risk of unauthorized access to the data and ensure that the data is being used appropriately.
D makes more sense when dealing with customers' data and relationship C - CMDB handles the IT environment and the component used to deliver IT services ( such as assets). Since the question talks about customer data then D (CRM) should be the answer.
Agree. D makes the most sense in this scenario.
Not sure if D would alter or "interrupt existing processes"
It is CRM based on the scenario
it is D
Tracking customer orders, inquiries, and issues = Customer Relationship Management Software Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)
D. A CRM application to consolidate the data and provision access based on the process and need
Consolidation of Data: A CRM application centralizes customer data, which allows for better management and security of sensitive information. Access Control: CRM systems typically include robust access controls, allowing the organization to restrict access to customer data based on roles and responsibilities. This ensures that only authorized personnel can access specific customer data. Process Integration: CRM applications can integrate with existing processes related to tracking customer orders, inquiries, and issues. This helps in maintaining continuity of operations while enhancing security. Data Security: Modern CRM solutions often include built-in encryption and other security features, ensuring that customer data is protected both at rest and in transit.
The senior management team would like to address these issues without interrupting existing processes.. Introducing a CRM changes the process as data is currently accessed by file.