Are you studying for the CISSP certification?
Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
Janet works in the HR department. Janet is not a manager. Janet is hiring a new employee. Janet is interviewing her friend Alice for the job. Janet's organization requires background checks be performed on all potential new employees. Because Alice is Janet's friend, Janet does not perform a background check on Alice. Janet hires Alice. Janet has failed to perform _______________. % % [select all that apply]
due care
new employee orientation
due diligence
physical security checks
Janet has failed to perform both due care and due diligence. Because she has not performed as a "reasonable person" person would be expected to perform, she has failed to perform due care. Because she has not adhered to the organizations policies and procedures and taken preemptive measures (the background check) to avoid harm to the company she has failed to perform due diligence.
"Due care pertains to acting responsibly and doing the right thing. It is a legal term that defines the standards of performance that can be expected, either by contract or by implication, in the execution of a particular task." - CISSP Exam Guide, Sixth Edition, Shon Harris, Chapter 9, Page 1023
âDue care is an important topic for the information security profession to understand. It is primarily a legal term used to describe the care a âreasonable personâ would exercise under given circumstances. In other words, it is used to also describe what an individualâs or organizationâs legal duty is concerned to be. The lack of due care is often considered negligence and in most countries it is actionable by law.â - Official ISC2 Guide to the CISSP CBK, Fourth Edition, Chapter 1, Page 33
âDue diligence is similar to due care with the exception that it is a preemptive measure made to avoid harm to other person or their property. If performed correctly, due diligence leads to due care when needed and avoids other situations where due care may need to be exercised. Due diligence is a practice that should be adopted by the information security professionals as a core tenant of their career.â - Official ISC2 Guide to the CISSP CBK, Fourth Edition, Chapter 1, Page 33
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.