Professional Documents
Culture Documents
data governance & cyber security module 2 compiled
data governance & cyber security module 2 compiled
Q: An SBI Card employee sitting in an branch asks for list of high value customers
along with Mobile numbers for telecalling to sell SBI cards for the Branch. Branch
may share the list with SBI Card employee.
A: FALSE
Q: While verifying the pop-up name of PAN holder in CIF creation screen
A: 1 & 3
Q: To boost the housing loan business of the branch , list of HNIs can be shared with
HLCs through:
A: Not to be shared
Q: India is coming with its own Bill on Data Protection which is called ___
A: Personal Data Protection Bill
Q: Branch has sanctioned a Car loan to one of his staff, but the loan instalment was
not fed in HRMS. The staff paid the instalment through his account and informed the
BM that a SI has been registered for the same.
A: Recovery to staff loan should be through HRMS only, so recovery details in
HRMS needs to be updated
Q: What are the impacts of feeding incorrect date of birth of a customer in CBS
A: 1& 2
Q: If a car dealer asks us for a list of customers having existing car loans, to market
loans for new cars for us, shall we share the list?
A: Cannot be shared
Q: DQI Index has been included as one of the Key Responsibility Areas (KRAs) in
Career Development System (CDS)
A: TRUE
Q: As per the Bank‟s approved “SOP on Data Sharing with External Agencies/ Third
Parties” which of the following is to be considered as “Third Party”
A: All the above are to be treated as Third Parties
DATA GOVERNANCE & CYBER SECURITY MODULE -2
Q: Data Quality Index (DQI) dashboard measures the Data Quality for-
A: CIFs & Loans
Q: As per the Bank‟s approved “SOP on Data Sharing with External Agencies/ Third
Parties” which of the following is NOT to be considered as “Third Party”
A: Internal Auditors
Q: Customer sensitive Granular Data can be copied and stored without any approval
A: FALSE
Q: What are the two important pillars of the SOP on „Customer Sensitive Granular A:
Data Sharing and Access – Within Bank‟s Environment‟:
A: Regulated & Limited access
Q: Which of the following is not one of the functions of an effective Data Loss
Prevention (DLP) program
A: Follow-up with Data users for Data Quality enhancement
DATA GOVERNANCE & CYBER SECURITY MODULE -2
Q: For official purpose, if we are required to share customer sensitive data, then we
should:
A: Delete the data after use
Q: Which one is NOT an approved way of sharing granular Data/access Data under
normal circumstances:
A: E-mail
Q: What are the impacts of not verifying the pop-up name of PAN holder, while
fetching PAN details
A: 1& 2
Q: Incorrect spelling of Customer name comes under which one of the following Data
Quality Dimension?
A: Accuracy
Q: What are the impacts of feeding incorrect date of birth of a customer in CBS
A: 1& 2
Q: A customer has submitted Voter Card as OVD, along with AOF. During the
scrutiny, it was found that the age of customer is less than 18
A: DOB on OVD and AOF, if same, then only account may be opened
Q: Capturing of incorrect CRA rating / ECR in a loan account may result in _____
A: Both 1 & 2
Q: Non capturing of PAN in CIF, even if furnished in the AOF, may result in ___
A: Both 1 & 2
Q: If a car dealer asks us for a list of customers having existing car loans, to market
loans for new cars for us, shall we share the list?
A: Cannot be shared
Q: While verifying the pop-up name of PAN holder in CIF creation screen
A: 1 & 3
Q: The access to Customer Sensitive Granular Data to the users should be made
strictly on the basis of-
A: Both 1 & 2
Q: As per the Bank‟s approved “SOP on Data Sharing with External Agencies/ Third
Parties” which of the following is to be considered as “Third Party”
A: All the above are to be treated as Third Parties
Q: What are the possible means by which Customer Sensitive Granular Data can get
divulged or leaked to any unrelated person / third party like vendors, dealers etc:
A: All of the above