Ken Patmonk
0c3868ea71
OPS-1 through OPS-10, OS-2, OS-3 went from 5 → 15. OS-1, OS-4 through OS-11, SEC-1 through SEC-11, TRB-1 through TRB-4 went from 7 → 15. Questions cover exam-weight scenarios not duplicated from original content. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
3.6 KiB
SEC-9 Quiz: Data Destruction
Take this after studying notes/SEC-9-data-destruction.md.
Reply with answers like:
1B 2A 3D 4C 5B 6A 7D
Questions
- A company wants to reuse a hard drive but remove all previous data first. What is the best choice?
A. Quick format only
B. Whole-drive wipe
C. Lower screen brightness
D. Disable SSID broadcast
- Which data destruction method does not work on SSDs or flash drives?
A. Shredding
B. Cryptographic erase
C. Manufacturer secure erase
D. Degaussing
- What does a quick format usually do?
A. Rebuilds file system structures without securely overwriting all data
B. Physically destroys the drive
C. Removes the magnetic field from the drive
D. Produces a certificate of destruction
- A third-party vendor destroys drives containing regulated data. What should the company request?
A. Screen lock timer
B. APIPA address
C. Certificate of destruction
D. Browser cache
- Which method makes the drive unusable afterward?
A. File-level secure delete
B. Physical destruction
C. Quick format
D. Changing the file extension
- A single sensitive file must be securely removed, but the drive will stay in use. What method is most targeted?
A. Degauss the SSD
B. Incinerate the laptop
C. Disable Bluetooth
D. File-level overwrite or secure delete
- Why is normal file deletion not considered secure data destruction?
A. It always encrypts the file
B. It physically breaks the disk
C. The data may still be recoverable from storage
D. It creates an audit certificate
- Which secure erase method uses the drive's own firmware to wipe all storage cells and is especially effective on SSDs?
A. Degaussing
B. ATA Secure Erase or manufacturer secure erase
C. Quick format
D. Shredding
- A company has end-of-life SSDs with customer data that must be physically destroyed. Which method is most appropriate?
A. Degaussing
B. Quick format
C. Shredding or disintegration
D. Multiple overwrites only
- What is the difference between clearing and purging in data sanitization?
A. They are identical
B. Clearing uses logical overwrites (for reuse in same environment); purging uses stronger methods that prevent lab recovery
C. Clearing physically destroys the media
D. Purging only applies to SSDs
- Why can't a standard magnet typically degauss a modern hard drive?
A. Modern drives use optical storage
B. The magnetic field required is much stronger than a typical magnet can produce
C. Degaussing only works on SSDs
D. Modern drives use APFS
- A technician formats a drive and reinstalls Windows. A customer asks if their data is completely gone. What is the correct answer?
A. Yes, completely and permanently
B. No, much of the data may still be recoverable with forensic tools unless securely wiped
C. Only if BitLocker was enabled
D. Only if the drive is an SSD
- Which NIST publication provides guidelines for media sanitization?
A. NIST SP 800-88
B. NIST SP 800-53
C. ISO 27001
D. PCI DSS
- Which data destruction method is best when a drive must be erased but cannot be removed from a device?
A. Remote wipe via MDM or encrypted erase
B. Quick format only
C. Closing the disk management window
D. Disabling the drive letter
- A hard drive shows signs of failure. Before disposal, what should be done to protect data?
A. Quick format and donate
B. Perform a full secure wipe or physically destroy the drive
C. Reformat with FAT32
D. Delete the user profile folders
Answer Key For Instructor
- B
- D
- A
- C
- B
- D
- C
- B
- C
- B
- B
- B
- A
- A
- B