What must be done to protect sensitive import/export information?

• A. Disclose it to all partners.
• B. Store it only on local machines.
• C. Avoid any protection.
• D. Implement measures to ensure its protection as part of cybersecurity requirements.

Answer: (D)

Protecting sensitive import/export information requires integrating protective controls into your cybersecurity practices. This means classifying data, restricting access to authorized personnel, encrypting data at rest and in transit, and implementing secure data handling, monitoring, and incident response. When protection is built into cybersecurity requirements, you reduce the risk of leaks, unauthorized access, and noncompliance. Disclosing information to all partners or storing it only on local machines or avoiding protection leaves data exposed to theft, misuse, and regulatory penalties. Implementing appropriate safeguards as part of cybersecurity is the correct approach to maintaining secure and compliant operations.