[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"quiz:kjh-mock-kadai-2-v2":3,"quiz-article-index":1169},{"quizId":4,"title":5,"titleEn":6,"topicPath":7,"questions":8},"kjh-mock-kadai-2-v2","課題Ⅱ 模擬試験（第2回）","Subject II Mock Exam #2","software\u002Fkojin-joho-hogo\u002Fkadai-2",[9,37,60,83,106,130,152,176,199,222,246,269,293,316,339,362,386,409,432,455,479,504,526,549,572,595,617,639,661,683,705,729,752,774,797,821,845,869,891,914,936,960,983,1007,1031,1055,1079,1102,1125,1148],{"id":10,"articleId":11,"question":12,"options":15,"correctLabel":21,"explanation":32,"tags":35},"kjh-mock-k2v2-q01","kjh-k2-h01-security-kiso",{"en":13,"jp":14},"Which information security property guarantees that data has not been tampered with?","データが[改]{かい:alter}ざんされていないことを[保証]{ほしょう:guarantee}する[情報]{じょうほう:information}セキュリティの[特性]{とくせい:property}はどれか。",[16,20,24,28],{"label":17,"jp":18,"en":19},"ア","[機密性]{きみつせい:confidentiality}","Confidentiality",{"label":21,"jp":22,"en":23},"イ","[完全性]{かんぜんせい:integrity}","Integrity",{"label":25,"jp":26,"en":27},"ウ","[可用性]{かようせい:availability}","Availability",{"label":29,"jp":30,"en":31},"エ","[否認]{ひにん:non-repudiation}[防止]{ぼうし:prevention}","Non-repudiation",{"en":33,"jp":34},"Integrity guarantees that information is accurate and has not been tampered with. Confidentiality prevents leakage to unauthorized persons; availability means being able to access information when needed.","[完全性]{かんぜんせい:integrity}は、[情報]{じょうほう:information}が[正確]{せいかく:accurate}であり[改]{かい:alter}ざんされていないことを[保証]{ほしょう:guarantee}する[特性]{とくせい:property}である。[機密性]{きみつせい:confidentiality}は[権限]{けんげん:authority}のない[者]{もの:person}への[情報]{じょうほう:information}[漏]{ろう:leak}えいを[防]{ふせ:prevent}ぐこと、[可用性]{かようせい:availability}は[必要]{ひつよう:necessary}な[時]{とき:time}にアクセスできることを[意味]{いみ:mean}する。",[36],"CIA",{"id":38,"articleId":11,"question":39,"options":42,"correctLabel":21,"explanation":55,"tags":58},"kjh-mock-k2v2-q02",{"en":40,"jp":41},"Which malware secretly records a user's keyboard input?","[利用者]{りようしゃ:user}のキーボード[入力]{にゅうりょく:input}を[密]{ひそ:secretly}かに[記録]{きろく:record}するマルウェアはどれか。",[43,46,49,52],{"label":17,"jp":44,"en":45},"ランサムウェア","Ransomware",{"label":21,"jp":47,"en":48},"キーロガー","Keylogger",{"label":25,"jp":50,"en":51},"アドウェア","Adware",{"label":29,"jp":53,"en":54},"ワーム","Worm",{"en":56,"jp":57},"A keylogger is a type of spyware that records keyboard input to steal passwords. Ransomware encrypts data and demands a ransom. Adware forces ad displays. Worms self-propagate.","キーロガーは[利用者]{りようしゃ:user}のキーボード[入力]{にゅうりょく:input}を[記録]{きろく:record}し、パスワードなどを[窃取]{せっしゅ:steal}するスパイウェアの[一種]{いっしゅ:type}。ランサムウェアはデータを[暗号化]{あんごうか:encrypt}して[身代金]{みのしろきん:ransom}を[要求]{ようきゅう:demand}する。アドウェアは[広告]{こうこく:advertisement}を[強制]{きょうせい:force}[表示]{ひょうじ:display}する。ワームは[自己]{じこ:self}[増殖]{ぞうしょく:propagation}する。",[59],"malware",{"id":61,"articleId":11,"question":62,"options":65,"correctLabel":21,"explanation":78,"tags":81},"kjh-mock-k2v2-q03",{"en":63,"jp":64},"Which attack inserts SQL statements into web application input forms to illegitimately manipulate a database?","Webアプリケーションの[入力]{にゅうりょく:input}フォームにSQL[文]{ぶん:statement}を[挿入]{そうにゅう:insert}してデータベースを[不正]{ふせい:illegitimately}に[操作]{そうさ:manipulate}する[攻撃]{こうげき:attack}はどれか。",[66,69,72,75],{"label":17,"jp":67,"en":68},"クロスサイトスクリプティング","Cross-site scripting",{"label":21,"jp":70,"en":71},"SQLインジェクション","SQL injection",{"label":25,"jp":73,"en":74},"ディレクトリトラバーサル","Directory traversal",{"label":29,"jp":76,"en":77},"セッションハイジャック","Session hijacking",{"en":79,"jp":80},"SQL injection inserts malicious SQL into input forms to manipulate databases. XSS embeds scripts; directory traversal manipulates paths to access unauthorized files.","SQLインジェクションは、[入力]{にゅうりょく:input}フォームに[悪意]{あくい:malicious}あるSQL[文]{ぶん:statement}を[挿入]{そうにゅう:insert}し、データベースを[不正]{ふせい:illegitimately}に[操作]{そうさ:manipulate}する[攻撃]{こうげき:attack}。XSSはスクリプトの[埋]{う:embed}め[込]{こ:insert}み、ディレクトリトラバーサルはパス[操作]{そうさ:manipulation}で[不正]{ふせい:unauthorized}ファイルにアクセスする[攻撃]{こうげき:attack}。",[82],"SQLi",{"id":84,"articleId":11,"question":85,"options":88,"correctLabel":21,"explanation":101,"tags":104},"kjh-mock-k2v2-q04",{"en":86,"jp":87},"What is the most typical goal an attacker tries to achieve through an XSS attack?","XSS[攻撃]{こうげき:attack}により[攻撃者]{こうげきしゃ:attacker}が[達成]{たっせい:achieve}しようとする[目的]{もくてき:purpose}として[最]{もっと:most}も[典型的]{てんけいてき:typical}なものはどれか。",[89,92,95,98],{"label":17,"jp":90,"en":91},"サーバのルート[権限]{けんげん:privileges}の[奪取]{だっしゅ:seizure}","Seizing server root privileges",{"label":21,"jp":93,"en":94},"[利用者]{りようしゃ:user}のCookie[情報]{じょうほう:information}やセッションIDの[窃取]{せっしゅ:theft}","Stealing the user's Cookie information or session ID",{"label":25,"jp":96,"en":97},"データベースの[全]{すべ:all}データの[削除]{さくじょ:deletion}","Deleting all data in the database",{"label":29,"jp":99,"en":100},"ネットワーク[帯域]{たいいき:bandwidth}の[占有]{せんゆう:occupation}","Occupying network bandwidth",{"en":102,"jp":103},"XSS typically executes malicious scripts on the user's browser to steal Cookie information or session IDs. Database manipulation is SQL injection; bandwidth occupation is DDoS.","XSSは[利用者]{りようしゃ:user}のブラウザ[上]{じょう:on}で[不正]{ふせい:malicious}なスクリプトを[実行]{じっこう:execute}させ、Cookie[情報]{じょうほう:information}やセッションIDを[窃取]{せっしゅ:steal}することが[典型的]{てんけいてき:typical}な[目的]{もくてき:purpose}である。データベース[操作]{そうさ:manipulation}はSQLインジェクション、[帯域]{たいいき:bandwidth}[占有]{せんゆう:occupation}はDDoSの[特徴]{とくちょう:characteristic}。",[105],"XSS",{"id":107,"articleId":108,"question":109,"options":112,"correctLabel":25,"explanation":125,"tags":128},"kjh-mock-k2v2-q05","kjh-k2-h04-gijutsu-kiso",{"en":110,"jp":111},"Which is the most effective countermeasure against CSRF attacks?","CSRF[攻撃]{こうげき:attack}への[対策]{たいさく:countermeasure}として[最]{もっと:most}も[有効]{ゆうこう:effective}なものはどれか。",[113,116,119,122],{"label":17,"jp":114,"en":115},"[入力値]{にゅうりょくち:input value}のエスケープ[処理]{しょり:processing}","Input value escape processing",{"label":21,"jp":117,"en":118},"SSL\u002FTLSによる[通信]{つうしん:communication}の[暗号化]{あんごうか:encryption}","Communication encryption with SSL\u002FTLS",{"label":25,"jp":120,"en":121},"トークンによるリクエストの[正当性]{せいとうせい:legitimacy}[検証]{けんしょう:verification}","Verifying request legitimacy using tokens",{"label":29,"jp":123,"en":124},"IPアドレスによるアクセス[制限]{せいげん:restriction}","Access restriction by IP address",{"en":126,"jp":127},"Embedding a secret token in forms and verifying it upon request is the most effective CSRF countermeasure. Escape processing is for XSS; SSL\u002FTLS is for eavesdropping and insufficient for CSRF.","CSRF[対策]{たいさく:countermeasure}には、[秘密]{ひみつ:secret}のトークンをフォームに[埋]{う:embed}め[込]{こ:insert}み、リクエスト[時]{じ:time}に[検証]{けんしょう:verify}する[方法]{ほうほう:method}が[最]{もっと:most}も[有効]{ゆうこう:effective}。エスケープ[処理]{しょり:processing}はXSS[対策]{たいさく:countermeasure}、SSL\u002FTLSは[盗聴]{とうちょう:eavesdropping}[対策]{たいさく:countermeasure}であり、CSRF[対策]{たいさく:countermeasure}としては[不十分]{ふじゅうぶん:insufficient}。",[129],"CSRF",{"id":131,"articleId":11,"question":132,"options":135,"correctLabel":25,"explanation":146,"tags":149},"kjh-mock-k2v2-q06",{"en":133,"jp":134},"Which attack is most closely associated with the use of botnets?","ボットネットを[利用]{りよう:utilize}した[攻撃]{こうげき:attack}として[最]{もっと:most}も[関連]{かんれん:related}が[深]{ふか:deep}いものはどれか。",[136,137,140,143],{"label":17,"jp":70,"en":71},{"label":21,"jp":138,"en":139},"フィッシング","Phishing",{"label":25,"jp":141,"en":142},"DDoS[攻撃]{こうげき:attack}","DDoS attack",{"label":29,"jp":144,"en":145},"ショルダーハッキング","Shoulder hacking",{"en":147,"jp":148},"DDoS attacks use botnets (groups of malware-infected computers) to send massive requests and halt services. SQL injection and phishing exploit individual vulnerabilities with less botnet involvement.","DDoS[攻撃]{こうげき:attack}は、ボットネット（マルウェアに[感染]{かんせん:infected}した[多数]{たすう:many}のコンピュータ[群]{ぐん:group}）を[利用]{りよう:utilize}して[大量]{たいりょう:massive}のリクエストを[送信]{そうしん:send}し、サービスを[停止]{ていし:halt}させる[攻撃]{こうげき:attack}。SQLインジェクションやフィッシングは[個別]{こべつ:individual}の[脆弱性]{ぜいじゃくせい:vulnerability}を[突]{つ:exploit}く[攻撃]{こうげき:attack}であり、ボットネットとの[関連]{かんれん:relationship}は[薄]{うす:thin}い。",[150,151],"DDoS","botnet",{"id":153,"articleId":154,"question":155,"options":158,"correctLabel":21,"explanation":171,"tags":174},"kjh-mock-k2v2-q07","kjh-k2-h04-gijutsu-jisshi",{"en":156,"jp":157},"Which is a typical technique used in targeted email attacks?","[標的型]{ひょうてきがた:targeted}メール[攻撃]{こうげき:attack}で[使]{つか:use}われる[典型的]{てんけいてき:typical}な[手口]{てぐち:technique}はどれか。",[159,162,165,168],{"label":17,"jp":160,"en":161},"[不特定]{ふとくてい:unspecified}[多数]{たすう:many}に[広告]{こうこく:advertisement}メールを[送信]{そうしん:send}する","Sending advertising emails to a large unspecified audience",{"label":21,"jp":163,"en":164},"[業務]{ぎょうむ:business}に[関連]{かんれん:related}する[件名]{けんめい:subject line}で[受信者]{じゅしんしゃ:recipient}を[騙]{だま:deceive}し、マルウェア[付]{つ:attached}きの[添付]{てんぷ:attachment}ファイルを[開]{ひら:open}かせる","Using a business-related subject line to deceive recipients into opening attachments with malware",{"label":25,"jp":166,"en":167},"[大量]{たいりょう:massive}のメールでメールサーバを[停止]{ていし:halt}させる","Halting the mail server with massive emails",{"label":29,"jp":169,"en":170},"メールのCCに[全社員]{ぜんしゃいん:all employees}のアドレスを[入]{い:put}れて[送信]{そうしん:send}する","Sending emails with all employee addresses in CC",{"en":172,"jp":173},"Targeted email attacks aim at specific organizations\u002Findividuals, using business-related disguises to infect with malware. Option A is spam; C describes a mail bomb.","[標的型]{ひょうてきがた:targeted}メール[攻撃]{こうげき:attack}は、[特定]{とくてい:specific}の[組織]{そしき:organization}や[個人]{こじん:individual}を[狙]{ねら:target}い、[業務]{ぎょうむ:business}に[関連]{かんれん:related}する[内容]{ないよう:content}を[装]{よそお:disguise}ったメールでマルウェアに[感染]{かんせん:infect}させる[手法]{しゅほう:technique}。アはスパムメール、ウはメール[爆弾]{ばくだん:bomb}の[説明]{せつめい:description}。",[175],"targeted-attack",{"id":177,"articleId":11,"question":178,"options":181,"correctLabel":21,"explanation":194,"tags":197},"kjh-mock-k2v2-q08",{"en":179,"jp":180},"What is the most appropriate reason supply chain attacks are considered dangerous?","サプライチェーン[攻撃]{こうげき:attack}が[危険]{きけん:dangerous}とされる[理由]{りゆう:reason}として[最]{もっと:most}も[適切]{てきせつ:appropriate}なものはどれか。",[182,185,188,191],{"label":17,"jp":183,"en":184},"[攻撃]{こうげき:attack}の[検知]{けんち:detection}が[容易]{ようい:easy}であるため","Because the attacks are easy to detect",{"label":21,"jp":186,"en":187},"[信頼]{しんらい:trusted}された[取引先]{とりひきさき:business partner}やソフトウェアを[経由]{けいゆ:via}するため[防御]{ぼうぎょ:defense}が[困難]{こんなん:difficult}","Defense is difficult because the attack comes via trusted business partners or software",{"label":25,"jp":189,"en":190},"[物理的]{ぶつりてき:physical}な[破壊]{はかい:destruction}を[伴]{ともな:accompany}うため","Because it involves physical destruction",{"label":29,"jp":192,"en":193},"[単一]{たんいつ:single}の[企業]{きぎょう:company}のみに[影響]{えいきょう:impact}するため","Because it impacts only a single company",{"en":195,"jp":196},"Supply chain attacks are hard to detect and defend against because they come through trusted business partners or software update routes. Damage can also spread in a chain across multiple organizations.","サプライチェーン[攻撃]{こうげき:attack}は、[信頼]{しんらい:trusted}された[取引先]{とりひきさき:business partner}やソフトウェア[更新]{こうしん:update}[経路]{けいろ:route}を[経由]{けいゆ:via}するため、[通常]{つうじょう:normally}のセキュリティ[対策]{たいさく:measures}では[検知]{けんち:detect}・[防御]{ぼうぎょ:defend}が[困難]{こんなん:difficult}。また[複数]{ふくすう:multiple}の[組織]{そしき:organizations}に[連鎖的]{れんさてき:chain-like}に[被害]{ひがい:damage}が[拡大]{かくだい:expand}する。",[198],"supply-chain",{"id":200,"articleId":11,"question":201,"options":204,"correctLabel":21,"explanation":217,"tags":220},"kjh-mock-k2v2-q09",{"en":202,"jp":203},"Which correctly describes \"trashing\" (dumpster diving) as a social engineering technique?","ソーシャルエンジニアリングの[手法]{しゅほう:technique}である「トラッシング」の[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[205,208,211,214],{"label":17,"jp":206,"en":207},"[電話]{でんわ:telephone}でシステム[管理者]{かんりしゃ:administrator}を[装]{よそお:impersonate}いパスワードを[聞]{き:ask}き[出]{だ:extract}す","Impersonating a system administrator over the phone to extract a password",{"label":21,"jp":209,"en":210},"ごみ[箱]{ばこ:box}や[廃棄物]{はいきぶつ:waste}から[機密]{きみつ:confidential}[情報]{じょうほう:information}を[入手]{にゅうしゅ:obtain}する","Obtaining confidential information from trash or waste",{"label":25,"jp":212,"en":213},"[偽]{にせ:fake}のWebサイトに[誘導]{ゆうどう:lure}する","Luring to a fake website",{"label":29,"jp":215,"en":216},"[背後]{はいご:behind}から[画面]{がめん:screen}を[覗]{のぞ:peek}き[見]{み:look}る","Peeking at the screen from behind",{"en":218,"jp":219},"Trashing (scavenging) obtains confidential information from discarded documents or memos in the trash. Option A is pretexting, C is phishing, and D is shoulder hacking.","トラッシング（スカベンジング）は、ごみ[箱]{ばこ:box}から[廃棄]{はいき:discarded}された[書類]{しょるい:documents}やメモから[機密]{きみつ:confidential}[情報]{じょうほう:information}を[入手]{にゅうしゅ:obtain}する[手法]{しゅほう:technique}。アはプリテキスティング、ウはフィッシング、エはショルダーハッキングの[説明]{せつめい:description}。",[221],"social-engineering",{"id":223,"articleId":224,"question":225,"options":228,"correctLabel":25,"explanation":241,"tags":244},"kjh-mock-k2v2-q10","kjh-k1-h01-hotaikei",{"en":226,"jp":227},"Which constitutes an \"unauthorized access act\" prohibited under the Unauthorized Computer Access Law?","[不正]{ふせい:unauthorized}アクセス[禁止法]{きんしほう:prohibition law}で[禁止]{きんし:prohibit}されている「[不正]{ふせい:unauthorized}アクセス[行為]{こうい:act}」に[該当]{がいとう:applicable}するものはどれか。",[229,232,235,238],{"label":17,"jp":230,"en":231},"[自分]{じぶん:one's own}のIDでログインすること","Logging in with one's own ID",{"label":21,"jp":233,"en":234},"[社内]{しゃない:internal}ネットワークの[速度]{そくど:speed}を[測定]{そくてい:measure}すること","Measuring internal network speed",{"label":25,"jp":236,"en":237},"[他人]{たにん:another person}のID・パスワードを[無断]{むだん:without permission}で[使用]{しよう:use}してシステムにアクセスすること","Accessing a system using another person's ID and password without permission",{"label":29,"jp":239,"en":240},"パスワードを[定期的]{ていきてき:periodically}に[変更]{へんこう:change}すること","Changing one's password periodically",{"en":242,"jp":243},"The law prohibits using another person's identification codes (ID\u002Fpassword) without permission to breach access controls. Authorized login with one's own ID or speed measurement is outside scope.","[不正]{ふせい:unauthorized}アクセス[禁止法]{きんしほう:prohibition law}は、[他人]{たにん:another person}の[識別]{しきべつ:identification}[符号]{ふごう:code}（ID・パスワード）を[無断]{むだん:without permission}で[使用]{しよう:use}してアクセス[制御]{せいぎょ:control}を[突破]{とっぱ:break through}する[行為]{こうい:act}を[禁止]{きんし:prohibit}している。[自分]{じぶん:one's own}のIDでの[正規]{せいき:authorized}ログインや[速度]{そくど:speed}[測定]{そくてい:measurement}は[対象外]{たいしょうがい:outside scope}。",[245],"unauthorized-access-law",{"id":247,"articleId":224,"question":248,"options":251,"correctLabel":29,"explanation":264,"tags":267},"kjh-mock-k2v2-q11",{"en":249,"jp":250},"Which is NOT included in the three requirements for \"trade secrets\" protected under the Unfair Competition Prevention Act?","[不正]{ふせい:unfair}[競争]{きょうそう:competition}[防止法]{ぼうしほう:prevention act}で[保護]{ほご:protect}される「[営業]{えいぎょう:trade}[秘密]{ひみつ:secret}」の3[要件]{ようけん:requirements}に[含]{ふく:include}まれないものはどれか。",[252,255,258,261],{"label":17,"jp":253,"en":254},"[秘密]{ひみつ:secret}[管理]{かんり:management}[性]{せい:nature}","Secret management nature",{"label":21,"jp":256,"en":257},"[有用性]{ゆうようせい:usefulness}","Usefulness",{"label":25,"jp":259,"en":260},"[非]{ひ:non-}[公知性]{こうちせい:public knowledge}","Non-public knowledge",{"label":29,"jp":262,"en":263},"[新規性]{しんきせい:novelty}","Novelty",{"en":265,"jp":266},"The three requirements for trade secrets are: (1) secret management, (2) usefulness, (3) non-public knowledge. Novelty is a patent requirement, not a trade secret requirement.","[営業]{えいぎょう:trade}[秘密]{ひみつ:secret}の3[要件]{ようけん:requirements}は、①[秘密]{ひみつ:secret}[管理]{かんり:management}[性]{せい:nature}（[秘密]{ひみつ:secret}として[管理]{かんり:manage}されていること）、②[有用性]{ゆうようせい:usefulness}（[事業]{じぎょう:business}に[有用]{ゆうよう:useful}であること）、③[非]{ひ:non-}[公知性]{こうちせい:public knowledge}（[公然]{こうぜん:publicly}と[知]{し:known}られていないこと）。[新規性]{しんきせい:novelty}は[特許]{とっきょ:patent}の[要件]{ようけん:requirement}であり、[営業]{えいぎょう:trade}[秘密]{ひみつ:secret}の[要件]{ようけん:requirement}ではない。",[268],"unfair-competition-law",{"id":270,"articleId":271,"question":272,"options":275,"correctLabel":17,"explanation":288,"tags":291},"kjh-mock-k2v2-q12","kjh-k2-h01-guideline",{"en":273,"jp":274},"Which body is stipulated to be established under the Basic Act on Cybersecurity?","サイバーセキュリティ[基本法]{きほんほう:basic act}で[設置]{せっち:established}が[規定]{きてい:stipulated}されている[機関]{きかん:body}はどれか。",[276,279,282,285],{"label":17,"jp":277,"en":278},"サイバーセキュリティ[戦略]{せんりゃく:strategy}[本部]{ほんぶ:headquarters}","Cybersecurity Strategy Headquarters",{"label":21,"jp":280,"en":281},"[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[委員会]{いいんかい:commission}","Personal Information Protection Commission",{"label":25,"jp":283,"en":284},"[公正]{こうせい:fair}[取引]{とりひき:trade}[委員会]{いいんかい:commission}","Fair Trade Commission",{"label":29,"jp":286,"en":287},"[会計]{かいけい:accounting}[検査院]{けんさいん:board of audit}","Board of Audit",{"en":289,"jp":290},"The Basic Act on Cybersecurity stipulates establishing the Cybersecurity Strategy Headquarters under the Cabinet to formulate and promote national cybersecurity strategy. The PPC is based on the Personal Information Protection Act.","サイバーセキュリティ[基本法]{きほんほう:basic act}は、[内閣]{ないかく:cabinet}にサイバーセキュリティ[戦略]{せんりゃく:strategy}[本部]{ほんぶ:headquarters}を[設置]{せっち:establish}し、[国]{くに:nation}のサイバーセキュリティ[戦略]{せんりゃく:strategy}を[策定]{さくてい:formulate}・[推進]{すいしん:promote}することを[規定]{きてい:stipulate}している。[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[委員会]{いいんかい:commission}は[個人情報]{こじんじょうほう:personal information}[保護法]{ほごほう:protection act}に[基]{もと:based}づく。",[292],"cybersecurity-basic-act",{"id":294,"articleId":224,"question":295,"options":298,"correctLabel":21,"explanation":311,"tags":314},"kjh-mock-k2v2-q13",{"en":296,"jp":297},"Which correctly describes the Privacy Mark (P-Mark) system?","プライバシーマーク（P-Mark）[制度]{せいど:system}の[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[299,302,305,308],{"label":17,"jp":300,"en":301},"[国際]{こくさい:international}[規格]{きかく:standard}ISO\u002FIEC 27001に[基]{もと:based}づく[認証]{にんしょう:certification}[制度]{せいど:system}","A certification system based on international standard ISO\u002FIEC 27001",{"label":21,"jp":303,"en":304},"JIS Q 15001に[基]{もと:based}づき[個人情報]{こじんじょうほう:personal information}の[適切]{てきせつ:appropriate}な[保護]{ほご:protection}[体制]{たいせい:structure}を[評価]{ひょうか:evaluate}する[日本]{にほん:Japan}[独自]{どくじ:unique}の[制度]{せいど:system}","A Japan-unique system evaluating personal information protection based on JIS Q 15001",{"label":25,"jp":306,"en":307},"[技術的]{ぎじゅつてき:technical}セキュリティ[対策]{たいさく:measures}のみを[審査]{しんさ:audit}する[制度]{せいど:system}","A system that audits only technical security measures",{"label":29,"jp":309,"en":310},"[認証]{にんしょう:certification}[取得]{しゅとく:acquisition}すれば[永久]{えいきゅう:permanent}に[有効]{ゆうこう:valid}","Certification is permanently valid once obtained",{"en":312,"jp":313},"Privacy Mark is a Japan-unique personal information protection certification based on JIS Q 15001. ISMS is based on ISO\u002FIEC 27001. P-Mark validity is 2 years and requires renewal audit.","プライバシーマークはJIS Q 15001に[基]{もと:based}づく[日本]{にほん:Japan}[独自]{どくじ:unique}の[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[認証]{にんしょう:certification}[制度]{せいど:system}。ISMSはISO\u002FIEC 27001に[基]{もと:based}づく。P-Markの[有効]{ゆうこう:validity}[期間]{きかん:period}は2[年]{ねん:years}であり、[更新]{こうしん:renewal}[審査]{しんさ:audit}が[必要]{ひつよう:necessary}。",[315],"P-Mark",{"id":317,"articleId":154,"question":318,"options":321,"correctLabel":25,"explanation":334,"tags":337},"kjh-mock-k2v2-q14",{"en":319,"jp":320},"Which activity falls under the \"Detect\" function of NIST CSF?","NIST CSFの「[検知]{けんち:detect}（Detect）」に[該当]{がいとう:applicable}する[活動]{かつどう:activity}はどれか。",[322,325,328,331],{"label":17,"jp":323,"en":324},"[資産]{しさん:assets}の[洗]{あら:inventory}い[出]{だ:identification}しと[管理]{かんり:management}","Inventorying and managing assets",{"label":21,"jp":326,"en":327},"アクセス[制御]{せいぎょ:control}の[実施]{じっし:implementation}","Implementing access control",{"label":25,"jp":329,"en":330},"セキュリティイベントの[監視]{かんし:monitoring}と[異常]{いじょう:anomaly}[検知]{けんち:detection}","Monitoring security events and detecting anomalies",{"label":29,"jp":332,"en":333},"インシデント[発生]{はっせい:occurrence}[後]{ご:after}のシステム[復旧]{ふっきゅう:recovery}","System recovery after an incident",{"en":335,"jp":336},"\"Detect\" involves monitoring security events and detecting anomalies. Option A is \"Identify,\" B is \"Protect,\" and D is \"Recover.\"","「[検知]{けんち:detect}」はセキュリティイベントの[監視]{かんし:monitoring}と[異常]{いじょう:anomaly}[検知]{けんち:detection}を[行]{おこな:conduct}う[機能]{きのう:function}。アは「[識別]{しきべつ:identify}（Identify）」、イは「[防御]{ぼうぎょ:protect}（Protect）」、エは「[復旧]{ふっきゅう:recover}（Recover）」に[該当]{がいとう:applicable}する。",[338],"NIST-CSF",{"id":340,"articleId":224,"question":341,"options":344,"correctLabel":21,"explanation":357,"tags":360},"kjh-mock-k2v2-q15",{"en":342,"jp":343},"Which correctly describes the difference between ISMS and Privacy Mark?","ISMSとプライバシーマークの[違]{ちが:difference}いとして[正]{ただ:correct}しいものはどれか。",[345,348,351,354],{"label":17,"jp":346,"en":347},"ISMSは[個人情報]{こじんじょうほう:personal information}のみ、P-Markは[全]{すべ:all}ての[情報]{じょうほう:information}[資産]{しさん:assets}を[対象]{たいしょう:scope}とする","ISMS covers only personal information; P-Mark covers all information assets",{"label":21,"jp":349,"en":350},"ISMSは[情報]{じょうほう:information}[資産]{しさん:assets}[全般]{ぜんぱん:in general}、P-Markは[個人情報]{こじんじょうほう:personal information}の[保護]{ほご:protection}を[対象]{たいしょう:scope}とする","ISMS covers information assets in general; P-Mark covers personal information protection",{"label":25,"jp":352,"en":353},"[両者]{りょうしゃ:both}は[同]{おな:same}じ[認証]{にんしょう:certification}[基準]{きじゅん:standard}に[基]{もと:based}づく","Both are based on the same certification standard",{"label":29,"jp":355,"en":356},"P-Markは[国際]{こくさい:international}[規格]{きかく:standard}、ISMSは[日本]{にほん:Japan}[独自]{どくじ:unique}の[規格]{きかく:standard}","P-Mark is an international standard; ISMS is a Japan-unique standard",{"en":358,"jp":359},"ISMS is an international standard based on ISO\u002FIEC 27001 covering information assets in general. P-Mark is a Japan-unique personal information protection certification based on JIS Q 15001.","ISMSはISO\u002FIEC 27001に[基]{もと:based}づき[情報]{じょうほう:information}[資産]{しさん:assets}[全般]{ぜんぱん:in general}のセキュリティを[対象]{たいしょう:scope}とする[国際]{こくさい:international}[規格]{きかく:standard}。P-MarkはJIS Q 15001に[基]{もと:based}づく[日本]{にほん:Japan}[独自]{どくじ:unique}の[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[認証]{にんしょう:certification}[制度]{せいど:system}。",[361,315],"ISMS",{"id":363,"articleId":364,"question":365,"options":368,"correctLabel":17,"explanation":381,"tags":384},"kjh-mock-k2v2-q16","kjh-k2-h02-soshiki-kiso",{"en":366,"jp":367},"What is the primary purpose of formulating a basic policy?","[基本方針]{きほんほうしん:basic policy}を[策定]{さくてい:formulate}する[主]{おも:primary}な[目的]{もくてき:purpose}はどれか。",[369,372,375,378],{"label":17,"jp":370,"en":371},"[組織]{そしき:organization}の[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}に[対]{たい:towards}する[姿勢]{しせい:stance}を[内外]{ないがい:internally\u002Fexternally}に[示]{しめ:demonstrate}す","To demonstrate the organization's stance on personal information protection internally and externally",{"label":21,"jp":373,"en":374},"[従業者]{じゅうぎょうしゃ:employees}の[給与]{きゅうよ:salary}[体系]{たいけい:system}を[明確]{めいかく:clarify}にする","To clarify the employee salary system",{"label":25,"jp":376,"en":377},"ウイルス[対策]{たいさく:countermeasure}ソフトの[選定]{せんてい:selection}[基準]{きじゅん:criteria}を[定]{さだ:establish}める","To establish criteria for selecting antivirus software",{"label":29,"jp":379,"en":380},"サーバルームの[温度]{おんど:temperature}[管理]{かんり:management}[基準]{きじゅん:standard}を[定]{さだ:establish}める","To establish temperature management standards for the server room",{"en":382,"jp":383},"The basic policy declares the organization's stance on personal information protection internally and externally. Specific technical measures and operational standards are established in countermeasure standards and procedures.","[基本方針]{きほんほうしん:basic policy}は、[組織]{そしき:organization}が[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}にどのように[取]{と:engage}り[組]{く:engage}むかの[姿勢]{しせい:stance}を[内外]{ないがい:internally\u002Fexternally}に[宣言]{せんげん:declare}するもの。[具体的]{ぐたいてき:specific}な[技術]{ぎじゅつ:technical}[対策]{たいさく:measures}や[運用]{うんよう:operational}[基準]{きじゅん:standards}は[対策]{たいさく:measures}[基準]{きじゅん:standards}や[手順書]{てじゅんしょ:procedures}で[定]{さだ:establish}める。",[385],"basic-policy",{"id":387,"articleId":364,"question":388,"options":391,"correctLabel":17,"explanation":404,"tags":407},"kjh-mock-k2v2-q17",{"en":389,"jp":390},"What is the most appropriate purpose of establishing a personal information management register?","[個人情報]{こじんじょうほう:personal information}[管理]{かんり:management}[台帳]{だいちょう:register}を[整備]{せいび:establish}する[目的]{もくてき:purpose}として[最]{もっと:most}も[適切]{てきせつ:appropriate}なものはどれか。",[392,395,398,401],{"label":17,"jp":393,"en":394},"[組織]{そしき:organization}が[保有]{ほゆう:hold}する[個人情報]{こじんじょうほう:personal information}の[全体]{ぜんたい:entire}[像]{ぞう:picture}を[把握]{はあく:grasp}し[適切]{てきせつ:appropriate}に[管理]{かんり:manage}する","To grasp and appropriately manage the overall picture of personal information held by the organization",{"label":21,"jp":396,"en":397},"[従業者]{じゅうぎょうしゃ:employees}の[勤怠]{きんたい:attendance}を[管理]{かんり:manage}する","To manage employee attendance",{"label":25,"jp":399,"en":400},"ネットワーク[機器]{きき:equipment}の[保守]{ほしゅ:maintenance}[期限]{きげん:deadline}を[管理]{かんり:manage}する","To manage maintenance deadlines for network equipment",{"label":29,"jp":402,"en":403},"[会計]{かいけい:accounting}[処理]{しょり:processing}を[効率化]{こうりつか:streamline}する","To streamline accounting processing",{"en":405,"jp":406},"The management register lists the types, quantities, purposes of use, storage locations, and authorized persons of personal information the organization holds, to grasp the overall picture.","[管理]{かんり:management}[台帳]{だいちょう:register}は、[組織]{そしき:organization}が[保有]{ほゆう:hold}する[個人情報]{こじんじょうほう:personal information}の[種類]{しゅるい:types}、[件数]{けんすう:number}、[利用]{りよう:use}[目的]{もくてき:purpose}、[保管]{ほかん:storage}[場所]{ばしょ:location}、アクセス[権限]{けんげん:authority}[者]{もの:person}などを[一覧]{いちらん:list}[化]{か:-ize}し、[全体]{ぜんたい:entire}[像]{ぞう:picture}を[把握]{はあく:grasp}するためのもの。",[408],"management-register",{"id":410,"articleId":108,"question":411,"options":414,"correctLabel":25,"explanation":427,"tags":430},"kjh-mock-k2v2-q18",{"en":412,"jp":413},"Which correctly describes the characteristic of the \"informal approach\" in risk analysis?","リスク[分析]{ぶんせき:analysis}の「[非]{ひ:in-}[形式的]{けいしきてき:formal}アプローチ」の[特徴]{とくちょう:characteristic}として[正]{ただ:correct}しいものはどれか。",[415,418,421,424],{"label":17,"jp":416,"en":417},"[全]{すべ:all}ての[資産]{しさん:assets}に[対]{たい:for}して[定量的]{ていりょうてき:quantitatively}にリスクを[算出]{さんしゅつ:calculate}する","Quantitatively calculating risk for all assets",{"label":21,"jp":419,"en":420},"[既存]{きそん:existing}の[基準]{きじゅん:standard}と[比較]{ひかく:compare}してギャップを[分析]{ぶんせき:analyze}する","Analyzing gaps by comparing with existing standards",{"label":25,"jp":422,"en":423},"[経験]{けいけん:experience}や[知識]{ちしき:knowledge}に[基]{もと:based}づいて[担当者]{たんとうしゃ:person in charge}がリスクを[判断]{はんだん:judge}する","The person in charge judges risk based on experience and knowledge",{"label":29,"jp":425,"en":426},"[複数]{ふくすう:multiple}の[手法]{しゅほう:methods}を[組]{く:combine}み[合]{あ:together}わせて[分析]{ぶんせき:analyze}する","Analyzing by combining multiple methods",{"en":428,"jp":429},"The informal approach judges risk based on the practitioner's experience and knowledge, not systematic methods. Option A is detailed risk analysis, B is the baseline approach, and D is the combined approach.","[非]{ひ:in-}[形式的]{けいしきてき:formal}アプローチは、[体系的]{たいけいてき:systematic}な[手法]{しゅほう:method}ではなく、[担当者]{たんとうしゃ:person in charge}の[経験]{けいけん:experience}や[知識]{ちしき:knowledge}に[基]{もと:based}づいてリスクを[判断]{はんだん:judge}する[方法]{ほうほう:method}。アは[詳細]{しょうさい:detailed}リスク[分析]{ぶんせき:analysis}、イはベースラインアプローチ、エは[組]{く:combination}み[合]{あ:together}わせアプローチ。",[431],"risk-analysis",{"id":433,"articleId":364,"question":434,"options":437,"correctLabel":25,"explanation":450,"tags":453},"kjh-mock-k2v2-q19",{"en":435,"jp":436},"Which is positioned at the lowest level in the regulation document hierarchy?","[規程]{きてい:regulations}[文書]{ぶんしょ:documents}[体系]{たいけい:hierarchy}で[最]{もっと:most}も[下位]{かい:subordinate}に[位置]{いち:positioned}するものはどれか。",[438,441,444,447],{"label":17,"jp":439,"en":440},"[基本方針]{きほんほうしん:basic policy}","Basic policy",{"label":21,"jp":442,"en":443},"[対策]{たいさく:measures}[基準]{きじゅん:standards}","Countermeasure standards",{"label":25,"jp":445,"en":446},"[実施]{じっし:implementation}[手順書]{てじゅんしょ:procedures}","Implementation procedures",{"label":29,"jp":448,"en":449},"[法律]{ほうりつ:law}","Law",{"en":451,"jp":452},"The hierarchy is: basic policy → countermeasure standards → implementation procedures. Implementation procedures are the lowest level, describing specific operational steps.","[規程]{きてい:regulations}[文書]{ぶんしょ:documents}[体系]{たいけい:hierarchy}は、[基本方針]{きほんほうしん:basic policy}→[対策]{たいさく:measures}[基準]{きじゅん:standards}→[実施]{じっし:implementation}[手順書]{てじゅんしょ:procedures}の[順]{じゅん:order}で[構成]{こうせい:structured}され、[実施]{じっし:implementation}[手順書]{てじゅんしょ:procedures}が[最]{もっと:most}も[下位]{かい:subordinate}で[具体的]{ぐたいてき:specific}な[操作]{そうさ:operation}[手順]{てじゅん:procedure}を[記載]{きさい:describe}する。",[454],"document-hierarchy",{"id":456,"articleId":457,"question":458,"options":461,"correctLabel":17,"explanation":474,"tags":477},"kjh-mock-k2v2-q20","kjh-k2-h02-anzen-kanri-sochi",{"en":459,"jp":460},"Which is a specific example of \"establishing means to check personal data handling status\" in organizational safety management measures?","[組織的]{そしきてき:organizational}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}における「[個人]{こじん:personal}データの[取扱]{とりあつかい:handling}い[状況]{じょうきょう:status}を[確認]{かくにん:check}する[手段]{しゅだん:means}の[整備]{せいび:establishment}」の[具体]{ぐたい:specific}[例]{れい:example}はどれか。",[462,465,468,471],{"label":17,"jp":463,"en":464},"[定期的]{ていきてき:periodic}な[内部]{ないぶ:internal}[監査]{かんさ:audit}やログの[確認]{かくにん:check}","Periodic internal audits and log checks",{"label":21,"jp":466,"en":467},"ファイアウォールの[設置]{せっち:installation}","Installing a firewall",{"label":25,"jp":469,"en":470},"[新入]{しんにゅう:new}[社員]{しゃいん:employee}[研修]{けんしゅう:training}の[実施]{じっし:implementation}","Conducting new employee training",{"label":29,"jp":472,"en":473},"ICカードによる[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}","Entry\u002Fexit management using IC cards",{"en":475,"jp":476},"Checking handling status includes periodic internal audits, log checks, and register verification. Option B is a technical measure, C is a human measure, and D is a physical measure.","[取扱]{とりあつかい:handling}い[状況]{じょうきょう:status}の[確認]{かくにん:check}には、[定期的]{ていきてき:periodic}な[内部]{ないぶ:internal}[監査]{かんさ:audit}、ログの[確認]{かくにん:check}、[台帳]{だいちょう:register}の[照合]{しょうごう:verification}などが[該当]{がいとう:applicable}する。イは[技術的]{ぎじゅつてき:technical}[措置]{そち:measures}、ウは[人的]{じんてき:human}[措置]{そち:measures}、エは[物理的]{ぶつりてき:physical}[措置]{そち:measures}。",[478],"organizational-measures",{"id":480,"articleId":481,"question":482,"options":485,"correctLabel":25,"explanation":498,"tags":501},"kjh-mock-k2v2-q21","kjh-k1-h04-anzen-kanri",{"en":483,"jp":484},"Which correctly describes the scope of confidentiality agreements under human safety management measures?","[人的]{じんてき:human}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}における[秘密]{ひみつ:confidentiality}[保持]{ほじ:maintenance}[契約]{けいやく:agreement}の[対象]{たいしょう:scope}として[正]{ただ:correct}しいものはどれか。",[486,489,492,495],{"label":17,"jp":487,"en":488},"[正社員]{せいしゃいん:full-time employees}のみ","Full-time employees only",{"label":21,"jp":490,"en":491},"[管理]{かんり:management}[職]{しょく:position}のみ","Management positions only",{"label":25,"jp":493,"en":494},"[個人]{こじん:personal}データを[取]{と:handle}り[扱]{あつか:handle}う[全]{すべ:all}ての[従業者]{じゅうぎょうしゃ:employees}（[派遣]{はけん:dispatch}[社員]{しゃいん:employees}・パート[等]{とう:etc.}を[含]{ふく:include}む）","All employees handling personal data (including dispatched workers, part-timers, etc.)",{"label":29,"jp":496,"en":497},"[外部]{がいぶ:external}の[監査]{かんさ:audit}[法人]{ほうじん:corporation}のみ","External audit corporations only",{"en":499,"jp":500},"Confidentiality agreements should be concluded with all employees handling personal data regardless of employment type. \"Employees\" includes dispatched workers, part-timers, and directors.","[秘密]{ひみつ:confidentiality}[保持]{ほじ:maintenance}[契約]{けいやく:agreement}は、[雇用]{こよう:employment}[形態]{けいたい:form}に[関]{かかわ:regardless}らず、[個人]{こじん:personal}データを[取]{と:handle}り[扱]{あつか:handle}う[全]{すべ:all}ての[従業者]{じゅうぎょうしゃ:employees}と[締結]{ていけつ:conclude}すべきもの。「[従業者]{じゅうぎょうしゃ:employees}」には[派遣]{はけん:dispatched}[社員]{しゃいん:employees}やパート、[取締役]{とりしまりやく:directors}も[含]{ふく:included}まれる。",[502,503],"human-measures","employee-definition",{"id":505,"articleId":481,"question":506,"options":509,"correctLabel":29,"explanation":522,"tags":525},"kjh-mock-k2v2-q22",{"en":507,"jp":508},"Which is NOT included in \"employees\" under the Personal Information Protection Act?","[個人情報]{こじんじょうほう:personal information}[保護法]{ほごほう:protection act}における「[従業者]{じゅうぎょうしゃ:employees}」に[含]{ふく:include}まれないものはどれか。",[510,513,516,519],{"label":17,"jp":511,"en":512},"[派遣]{はけん:dispatched}[社員]{しゃいん:employee}","Dispatched employee",{"label":21,"jp":514,"en":515},"パートタイマー","Part-timer",{"label":25,"jp":517,"en":518},"[取締役]{とりしまりやく:director}","Director",{"label":29,"jp":520,"en":521},"[他社]{たしゃ:other company}の[顧客]{こきゃく:customer}","Customer of another company",{"en":523,"jp":524},"\"Employees\" includes all persons working under the operator's direction\u002Fsupervision—dispatched workers, part-timers, and directors. Customers of another company are not employees.","「[従業者]{じゅうぎょうしゃ:employees}」は[事業者]{じぎょうしゃ:business operator}の[指揮]{しき:direction}[監督]{かんとく:supervision}の[下]{もと:under}で[業務]{ぎょうむ:work}に[従事]{じゅうじ:engage}する[全]{すべ:all}ての[者]{もの:persons}で、[派遣]{はけん:dispatched}[社員]{しゃいん:employees}・パート・[取締役]{とりしまりやく:directors}も[含]{ふく:included}む。[他社]{たしゃ:other company}の[顧客]{こきゃく:customer}は[従業者]{じゅうぎょうしゃ:employee}ではない。",[503],{"id":527,"articleId":481,"question":528,"options":531,"correctLabel":25,"explanation":544,"tags":547},"kjh-mock-k2v2-q23",{"en":529,"jp":530},"Which is NOT appropriate to implement in subcontractor supervision?","[委託先]{いたくさき:subcontractor}の[監督]{かんとく:supervision}で[実施]{じっし:implement}すべき[事項]{じこう:item}として[適切]{てきせつ:appropriate}でないものはどれか。",[532,535,538,541],{"label":17,"jp":533,"en":534},"[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の[遵守]{じゅんしゅ:compliance}[状況]{じょうきょう:status}の[定期的]{ていきてき:periodic}な[確認]{かくにん:check}","Periodically checking compliance with safety management measures",{"label":21,"jp":536,"en":537},"[契約]{けいやく:contract}による[秘密]{ひみつ:confidentiality}[保持]{ほじ:maintenance}[義務]{ぎむ:obligation}の[規定]{きてい:stipulation}","Contractually stipulating confidentiality obligations",{"label":25,"jp":539,"en":540},"[委託先]{いたくさき:subcontractor}[社員]{しゃいん:employees}の[私生活]{しせいかつ:private life}の[監視]{かんし:monitoring}","Monitoring the private lives of subcontractor employees",{"label":29,"jp":542,"en":543},"[委託]{いたく:outsourcing}[契約]{けいやく:contract}[終了]{しゅうりょう:termination}[時]{じ:time}の[個人]{こじん:personal}データ[返却]{へんきゃく:return}・[消去]{しょうきょ:deletion}の[確認]{かくにん:verification}","Verifying personal data return\u002Fdeletion at contract termination",{"en":545,"jp":546},"Subcontractor supervision includes checking safety management, contractual obligations, and termination measures, but monitoring employees' private lives is inappropriate and constitutes a privacy violation.","[委託先]{いたくさき:subcontractor}の[監督]{かんとく:supervision}には、[安全]{あんぜん:safety}[管理]{かんり:management}の[確認]{かくにん:check}、[契約]{けいやく:contract}による[義務]{ぎむ:obligations}の[規定]{きてい:stipulation}、[契約]{けいやく:contract}[終了]{しゅうりょう:termination}[時]{じ:time}の[措置]{そち:measures}が[含]{ふく:included}まれるが、[社員]{しゃいん:employees}の[私生活]{しせいかつ:private life}の[監視]{かんし:monitoring}は[不適切]{ふてきせつ:inappropriate}でありプライバシーの[侵害]{しんがい:violation}にあたる。",[548],"subcontractor-supervision",{"id":550,"articleId":481,"question":551,"options":554,"correctLabel":21,"explanation":567,"tags":570},"kjh-mock-k2v2-q24",{"en":552,"jp":553},"What is the correct responsibility of the outsourcer when outsourcing personal data handling?","[個人]{こじん:personal}データの[取扱]{とりあつかい:handling}いを[委託]{いたく:outsource}する[場合]{ばあい:case}の[委託元]{いたくもと:outsourcer}の[責任]{せきにん:responsibility}として[正]{ただ:correct}しいものはどれか。",[555,558,561,564],{"label":17,"jp":556,"en":557},"[委託]{いたく:outsource}すれば[全]{すべ:all}ての[責任]{せきにん:responsibility}は[委託先]{いたくさき:subcontractor}に[移転]{いてん:transfer}する","All responsibility transfers to the subcontractor upon outsourcing",{"label":21,"jp":559,"en":560},"[委託先]{いたくさき:subcontractor}に[対]{たい:towards}する[必要]{ひつよう:necessary}かつ[適切]{てきせつ:appropriate}な[監督]{かんとく:supervision}を[行]{おこな:conduct}う[義務]{ぎむ:obligation}がある","There is an obligation to conduct necessary and appropriate supervision of the subcontractor",{"label":25,"jp":562,"en":563},"[委託先]{いたくさき:subcontractor}が[漏]{ろう:leak}えい[事故]{じこ:incident}を[起]{お:cause}こしても[委託元]{いたくもと:outsourcer}に[責任]{せきにん:responsibility}はない","The outsourcer bears no responsibility even if the subcontractor causes a leakage incident",{"label":29,"jp":565,"en":566},"[契約書]{けいやくしょ:contract}を[作成]{さくせい:create}する[必要]{ひつよう:need}はない","There is no need to create a contract",{"en":568,"jp":569},"The Personal Information Protection Act imposes an obligation on the outsourcer to conduct necessary and appropriate supervision of the subcontractor. Supervision responsibility remains with the outsourcer even after outsourcing.","[個人情報]{こじんじょうほう:personal information}[保護法]{ほごほう:protection act}は、[委託元]{いたくもと:outsourcer}に[委託先]{いたくさき:subcontractor}への[必要]{ひつよう:necessary}かつ[適切]{てきせつ:appropriate}な[監督]{かんとく:supervision}[義務]{ぎむ:obligation}を[課]{か:impose}している。[委託]{いたく:outsourcing}しても[監督]{かんとく:supervision}[責任]{せきにん:responsibility}は[委託元]{いたくもと:outsourcer}に[残]{のこ:remain}る。",[571],"subcontractor-contract",{"id":573,"articleId":457,"question":574,"options":577,"correctLabel":17,"explanation":590,"tags":593},"kjh-mock-k2v2-q25",{"en":575,"jp":576},"After a leakage incident, what should be done after fact investigation and damage prevention?","[漏]{ろう:leak}えい[事故]{じこ:incident}[発生]{はっせい:occurrence}[後]{ご:after}、[事実]{じじつ:facts}[調査]{ちょうさ:investigation}と[被害]{ひがい:damage}[拡大]{かくだい:expansion}[防止]{ぼうし:prevention}の[次]{つぎ:next}に[行]{おこな:carry out}うべき[対応]{たいおう:response}として[適切]{てきせつ:appropriate}なものはどれか。",[578,581,584,587],{"label":17,"jp":579,"en":580},"[影響]{えいきょう:impact}を[受]{う:receive}けた[本人]{ほんにん:person}への[通知]{つうち:notification}と[監督]{かんとく:supervisory}[官庁]{かんちょう:authority}への[報告]{ほうこく:report}","Notifying affected persons and reporting to the supervisory authority",{"label":21,"jp":582,"en":583},"[全]{すべ:all}ての[業務]{ぎょうむ:operations}を[無期限]{むきげん:indefinitely}に[停止]{ていし:halt}する","Halting all operations indefinitely",{"label":25,"jp":585,"en":586},"[関係者]{かんけいしゃ:persons involved}を[即座]{そくざ:immediately}に[解雇]{かいこ:dismiss}する","Immediately dismissing persons involved",{"label":29,"jp":588,"en":589},"[何]{なに:anything}もせずに[静観]{せいかん:wait and see}する","Do nothing and wait and see",{"en":591,"jp":592},"Leakage incident response follows: (1) fact investigation\u002Fdamage prevention → (2) notification to affected persons\u002Freport to authority → (3) cause investigation → (4) recurrence prevention measures.","[漏]{ろう:leak}えい[事故]{じこ:incident}の[対応]{たいおう:response}[手順]{てじゅん:procedure}は、①[事実]{じじつ:facts}[調査]{ちょうさ:investigation}・[被害]{ひがい:damage}[拡大]{かくだい:expansion}[防止]{ぼうし:prevention}→②[本人]{ほんにん:person}への[通知]{つうち:notification}・[監督]{かんとく:supervisory}[官庁]{かんちょう:authority}への[報告]{ほうこく:report}→③[原因]{げんいん:cause}[究明]{きゅうめい:investigation}→④[再発]{さいはつ:recurrence}[防止策]{ぼうしさく:prevention measures}の[策定]{さくてい:formulation}。",[594],"incident-response",{"id":596,"articleId":481,"question":597,"options":600,"correctLabel":17,"explanation":613,"tags":616},"kjh-mock-k2v2-q26",{"en":598,"jp":599},"Which is included in \"establishment of organizational structure\" as part of organizational safety management measures?","[組織的]{そしきてき:organizational}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の「[組織]{そしき:organization}[体制]{たいせい:structure}の[整備]{せいび:establishment}」に[含]{ふく:include}まれるものはどれか。",[601,604,607,610],{"label":17,"jp":602,"en":603},"[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[管理者]{かんりしゃ:manager}の[設置]{せっち:appointment}","Appointing a personal information protection manager",{"label":21,"jp":605,"en":606},"ウイルス[対策]{たいさく:countermeasure}ソフトの[更新]{こうしん:update}","Updating antivirus software",{"label":25,"jp":608,"en":609},"[書類]{しょるい:documents}のシュレッダー[処理]{しょり:processing}","Shredding documents",{"label":29,"jp":611,"en":612},"パスワードポリシーの[設定]{せってい:configuration}","Setting password policies",{"en":614,"jp":615},"Establishing organizational structure includes appointing a personal information protection manager and clarifying responsibility structures. B and D are technical measures; C is a physical measure.","[組織]{そしき:organization}[体制]{たいせい:structure}の[整備]{せいび:establishment}には、[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[管理者]{かんりしゃ:manager}の[設置]{せっち:appointment}、[責任]{せきにん:responsibility}[体制]{たいせい:structure}の[明確化]{めいかくか:clarification}などが[含]{ふく:included}まれる。イは[技術的]{ぎじゅつてき:technical}[措置]{そち:measures}、ウは[物理的]{ぶつりてき:physical}[措置]{そち:measures}、エは[技術的]{ぎじゅつてき:technical}[措置]{そち:measures}。",[478],{"id":618,"articleId":481,"question":619,"options":622,"correctLabel":29,"explanation":635,"tags":638},"kjh-mock-k2v2-q27",{"en":620,"jp":621},"Which situation does NOT require mandatory leakage reporting?","[漏]{ろう:leak}えい[等]{とう:etc.}[報告]{ほうこく:report}が[義務化]{ぎむか:mandatory}されている[事態]{じたい:situation}に[該当]{がいとう:applicable}しないものはどれか。",[623,626,629,632],{"label":17,"jp":624,"en":625},"[要配慮]{ようはいりょ:special care-required}[個人情報]{こじんじょうほう:personal information}の[漏]{ろう:leak}えい","Leakage of special care-required personal information",{"label":21,"jp":627,"en":628},"[不正]{ふせい:unauthorized}の[目的]{もくてき:purpose}をもって[行]{おこな:carry out}われた[漏]{ろう:leak}えい","Leakage carried out with unauthorized purpose",{"label":25,"jp":630,"en":631},"1,000[件]{けん:cases}を[超]{こ:exceed}える[個人]{こじん:personal}データの[漏]{ろう:leak}えい","Leakage of more than 1,000 personal data records",{"label":29,"jp":633,"en":634},"[社内]{しゃない:internal}[回覧]{かいらん:circulation}[文書]{ぶんしょ:document}の[誤字]{ごじ:typo}","A typo in an internal circulation document",{"en":636,"jp":637},"Mandatory reporting applies to: (1) special care-required PI leakage, (2) unauthorized-purpose leakage, (3) leakage exceeding 1,000 records, (4) leakage with risk of financial damage. A typo in an internal document does not qualify.","[漏]{ろう:leak}えい[等]{とう:etc.}[報告]{ほうこく:report}が[義務]{ぎむ:mandatory}づけられるのは、①[要配慮]{ようはいりょ:special care-required}[個人情報]{こじんじょうほう:personal information}の[漏]{ろう:leak}えい、②[不正]{ふせい:unauthorized}[目的]{もくてき:purpose}での[漏]{ろう:leak}えい、③1,000[件]{けん:cases}[超]{ちょう:exceed}の[漏]{ろう:leak}えい、④[財産的]{ざいさんてき:financial}[被害]{ひがい:damage}のおそれがある[漏]{ろう:leak}えいの4[類型]{るいけい:types}。[社内]{しゃない:internal}[文書]{ぶんしょ:document}の[誤字]{ごじ:typo}は[該当]{がいとう:applicable}しない。",[594],{"id":640,"articleId":271,"question":641,"options":644,"correctLabel":17,"explanation":657,"tags":660},"kjh-mock-k2v2-q28",{"en":642,"jp":643},"Which correctly describes the \"combined approach\" in risk analysis?","リスク[分析]{ぶんせき:analysis}の「[組]{く:combination}み[合]{あ:together}わせアプローチ」の[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[645,648,651,654],{"label":17,"jp":646,"en":647},"ベースラインアプローチと[詳細]{しょうさい:detailed}リスク[分析]{ぶんせき:analysis}など[複数]{ふくすう:multiple}の[手法]{しゅほう:methods}を[併用]{へいよう:use concurrently}する","Concurrently using multiple methods such as the baseline approach and detailed risk analysis",{"label":21,"jp":649,"en":650},"リスクを[完全]{かんぜん:completely}に[排除]{はいじょ:eliminate}する[手法]{しゅほう:method}","A method to completely eliminate risk",{"label":25,"jp":652,"en":653},"[外部]{がいぶ:external}の[専門家]{せんもんか:experts}にすべて[任]{まか:delegate}せる[手法]{しゅほう:method}","A method of delegating everything to external experts",{"label":29,"jp":655,"en":656},"リスクを[受容]{じゅよう:accept}して[何]{なに:anything}も[対策]{たいさく:measures}しない[手法]{しゅほう:method}","A method of accepting risk and taking no measures",{"en":658,"jp":659},"The combined approach uses detailed risk analysis for high-importance assets and the baseline approach for others, efficiently analyzing risk by combining multiple methods.","[組]{く:combination}み[合]{あ:together}わせアプローチは、[重要度]{じゅうようど:importance}の[高]{たか:high}い[資産]{しさん:assets}には[詳細]{しょうさい:detailed}リスク[分析]{ぶんせき:analysis}、その[他]{た:other}にはベースラインアプローチなど、[複数]{ふくすう:multiple}の[手法]{しゅほう:methods}を[組]{く:combine}み[合]{あ:together}わせて[効率的]{こうりつてき:efficiently}にリスクを[分析]{ぶんせき:analyze}する[方法]{ほうほう:method}。",[431],{"id":662,"articleId":481,"question":663,"options":666,"correctLabel":29,"explanation":679,"tags":682},"kjh-mock-k2v2-q29",{"en":664,"jp":665},"Which is NOT included in human safety management measures?","[人的]{じんてき:human}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}に[含]{ふく:include}まれないものはどれか。",[667,670,673,676],{"label":17,"jp":668,"en":669},"[従業者]{じゅうぎょうしゃ:employees}への[教育]{きょういく:education}・[研修]{けんしゅう:training}","Education and training for employees",{"label":21,"jp":671,"en":672},"[秘密]{ひみつ:confidentiality}[保持]{ほじ:maintenance}[契約]{けいやく:agreement}の[締結]{ていけつ:conclusion}","Concluding confidentiality agreements",{"label":25,"jp":674,"en":675},"[従業者]{じゅうぎょうしゃ:employees}への[懲戒]{ちょうかい:disciplinary}[規程]{きてい:regulations}の[整備]{せいび:establishment}","Establishing disciplinary regulations for employees",{"label":29,"jp":677,"en":678},"サーバの[冗長化]{じょうちょうか:redundancy}","Server redundancy",{"en":680,"jp":681},"Server redundancy falls under technical safety management. Human safety management measures are people-related: education\u002Ftraining, confidentiality agreements, disciplinary regulations.","サーバの[冗長化]{じょうちょうか:redundancy}は[技術的]{ぎじゅつてき:technical}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}に[該当]{がいとう:fall under}する。[人的]{じんてき:human}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}は、[教育]{きょういく:education}・[研修]{けんしゅう:training}、[秘密]{ひみつ:confidentiality}[保持]{ほじ:maintenance}[契約]{けいやく:agreement}、[懲戒]{ちょうかい:disciplinary}[規程]{きてい:regulations}など「[人]{ひと:people}」に[関]{かん:related}する[措置]{そち:measures}。",[502],{"id":684,"articleId":457,"question":685,"options":688,"correctLabel":29,"explanation":701,"tags":704},"kjh-mock-k2v2-q30",{"en":686,"jp":687},"Which is NOT an appropriate timing to review safety management measures?","[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の[見直]{みなお:review}しを[行]{おこな:conduct}うタイミングとして[適切]{てきせつ:appropriate}でないものはどれか。",[689,692,695,698],{"label":17,"jp":690,"en":691},"[法令]{ほうれい:laws}の[改正]{かいせい:revision}があった[時]{とき:time}","When laws are revised",{"label":21,"jp":693,"en":694},"[漏]{ろう:leak}えい[事故]{じこ:incident}が[発生]{はっせい:occurred}した[時]{とき:time}","When a leakage incident occurs",{"label":25,"jp":696,"en":697},"[定期的]{ていきてき:periodic}な[内部]{ないぶ:internal}[監査]{かんさ:audit}の[結果]{けっか:result}、[改善]{かいぜん:improvement}[点]{てん:points}が[見]{み:found}つかった[時]{とき:time}","When improvement points are found through periodic internal audits",{"label":29,"jp":699,"en":700},"[社員]{しゃいん:employee}[食堂]{しょくどう:cafeteria}のメニューが[変]{か:change}わった[時]{とき:time}","When the employee cafeteria menu changes",{"en":702,"jp":703},"Safety management reviews are triggered by law revisions, incidents, audit results, or business environment changes. Cafeteria menu changes are unrelated to safety management.","[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の[見直]{みなお:review}しは、[法令]{ほうれい:laws}[改正]{かいせい:revision}、[事故]{じこ:incident}[発生]{はっせい:occurrence}、[監査]{かんさ:audit}[結果]{けっか:results}、[業務]{ぎょうむ:business}[環境]{かんきょう:environment}の[変化]{へんか:change}などに[応]{おう:respond}じて[行]{おこな:conduct}う。[食堂]{しょくどう:cafeteria}メニューの[変更]{へんこう:change}は[安全]{あんぜん:safety}[管理]{かんり:management}とは[無関係]{むかんけい:unrelated}。",[478],{"id":706,"articleId":707,"question":708,"options":711,"correctLabel":25,"explanation":724,"tags":727},"kjh-mock-k2v2-q31","kjh-k2-h03-office",{"en":709,"jp":710},"Which is classified as a \"public zone\" in security zoning?","セキュリティゾーニングにおいて「[公開]{こうかい:public}[区域]{くいき:zone}」に[分類]{ぶんるい:classify}されるのはどれか。",[712,715,718,721],{"label":17,"jp":713,"en":714},"サーバルーム","Server room",{"label":21,"jp":716,"en":717},"[一般]{いっぱん:general}[執務]{しつむ:work}エリア","General work area",{"label":25,"jp":719,"en":720},"[来客]{らいきゃく:visitor}[受付]{うけつけ:reception}ロビー","Visitor reception lobby",{"label":29,"jp":722,"en":723},"[個人情報]{こじんじょうほう:personal information}[保管]{ほかん:storage}[庫]{こ:room}","Personal information storage room",{"en":725,"jp":726},"The visitor reception lobby is a public zone where outsiders can enter freely. Server rooms and storage rooms are managed zones; general work areas are handling zones.","[来客]{らいきゃく:visitor}[受付]{うけつけ:reception}ロビーは[外部]{がいぶ:external}の[人]{ひと:people}が[自由]{じゆう:freely}に[入]{はい:enter}れる[公開]{こうかい:public}[区域]{くいき:zone}。サーバルームや[保管]{ほかん:storage}[庫]{こ:room}は[管理]{かんり:managed}[区域]{くいき:zone}、[一般]{いっぱん:general}[執務]{しつむ:work}エリアは[取扱]{とりあつかい:handling}[区域]{くいき:zone}に[分類]{ぶんるい:classify}される。",[728],"security-zoning",{"id":730,"articleId":707,"question":731,"options":734,"correctLabel":17,"explanation":747,"tags":750},"kjh-mock-k2v2-q32",{"en":732,"jp":733},"Which correctly describes \"anti-passback\"?","「アンチパスバック」の[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[735,738,741,744],{"label":17,"jp":736,"en":737},"[入室]{にゅうしつ:entry}[記録]{きろく:record}がないのに[退室]{たいしつ:exit}しようとした[場合]{ばあい:case}にエラーとする[仕組]{しく:mechanism}み","A mechanism that raises an error when trying to exit without an entry record",{"label":21,"jp":739,"en":740},"[全]{すべ:all}ての[扉]{とびら:doors}を[同時]{どうじ:simultaneously}にロックする[仕組]{しく:mechanism}み","A mechanism that locks all doors simultaneously",{"label":25,"jp":742,"en":743},"[来訪者]{らいほうしゃ:visitor}にICカードを[発行]{はっこう:issue}する[仕組]{しく:mechanism}み","A mechanism for issuing IC cards to visitors",{"label":29,"jp":745,"en":746},"[防犯]{ぼうはん:crime prevention}カメラで[入退室]{にゅうたいしつ:entry\u002Fexit}を[録画]{ろくが:record}する[仕組]{しく:mechanism}み","A mechanism for recording entry\u002Fexit with security cameras",{"en":748,"jp":749},"Anti-passback verifies entry and exit records, preventing exit without an entry record (or vice versa). It is effective against piggybacking.","アンチパスバックは、[入室]{にゅうしつ:entry}[記録]{きろく:record}と[退室]{たいしつ:exit}[記録]{きろく:record}を[照合]{しょうごう:verify}し、[入室]{にゅうしつ:entry}[記録]{きろく:record}なしでの[退室]{たいしつ:exit}（またはその[逆]{ぎゃく:reverse}）を[防止]{ぼうし:prevent}する[仕組]{しく:mechanism}み。[共連]{ともづ:piggybacking}れ[対策]{たいさく:countermeasure}として[有効]{ゆうこう:effective}。",[751],"entry-exit-management",{"id":753,"articleId":707,"question":754,"options":757,"correctLabel":25,"explanation":768,"tags":771},"kjh-mock-k2v2-q33",{"en":755,"jp":756},"What measures are required in the \"handling zone\" under physical safety management?","[物理的]{ぶつりてき:physical}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}における「[取扱]{とりあつかい:handling}[区域]{くいき:zone}」で[求]{もと:require}められる[対策]{たいさく:measures}はどれか。",[758,759,762,765],{"label":17,"jp":472,"en":473},{"label":21,"jp":760,"en":761},"[壁]{かべ:wall}や[間仕切]{まじき:partition}りでの[物理的]{ぶつりてき:physical}な[区切]{くぎ:separation}り","Physical separation with walls or partitions",{"label":25,"jp":763,"en":764},"[座席]{ざせき:seating}[配置]{はいち:arrangement}や[覗]{のぞ:peeking}き[見]{み:looking}[防止]{ぼうし:prevention}などの[措置]{そち:measures}","Measures such as seating arrangement and peeking prevention",{"label":29,"jp":766,"en":767},"[生体]{せいたい:biometric}[認証]{にんしょう:authentication}による[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}","Entry\u002Fexit management using biometric authentication",{"en":769,"jp":770},"The handling zone does not require physical measures like walls\u002Fpartitions; seating arrangements and peeking prevention filters suffice. Entry\u002Fexit management is required for managed zones.","[取扱]{とりあつかい:handling}[区域]{くいき:zone}では[壁]{かべ:wall}や[間仕切]{まじき:partition}りなどの[物理的]{ぶつりてき:physical}[措置]{そち:measures}は[必須]{ひっす:mandatory}ではなく、[座席]{ざせき:seating}[配置]{はいち:arrangement}の[工夫]{くふう:arrangement}や[覗]{のぞ:peeking}き[見]{み:looking}[防止]{ぼうし:prevention}フィルターなどで[対応]{たいおう:respond}できる。[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}は[管理]{かんり:managed}[区域]{くいき:zone}で[求]{もと:required}められる[措置]{そち:measures}。",[772,773],"physical-measures","zoning",{"id":775,"articleId":11,"question":776,"options":779,"correctLabel":21,"explanation":792,"tags":795},"kjh-mock-k2v2-q34",{"en":777,"jp":778},"Which correctly describes the characteristic of software-based overwrite erasure?","データ[消去]{しょうきょ:erasure}[方法]{ほうほう:method}のうち、ソフトウェアによる[上書]{うわが:overwrite}き[消去]{しょうきょ:erasure}の[特徴]{とくちょう:characteristic}として[正]{ただ:correct}しいものはどれか。",[780,783,786,789],{"label":17,"jp":781,"en":782},"[物理的]{ぶつりてき:physical}[破壊]{はかい:destruction}より[確実性]{かくじつせい:reliability}が[高]{たか:high}い","It is more reliable than physical destruction",{"label":21,"jp":784,"en":785},"ディスク[全体]{ぜんたい:entire}にランダムデータを[複数]{ふくすう:multiple}[回]{かい:times}[上書]{うわが:overwrite}きして[復元]{ふくげん:recovery}を[困難]{こんなん:difficult}にする","Overwriting the entire disk multiple times with random data to make recovery difficult",{"label":25,"jp":787,"en":788},"フォーマットと[同]{おな:same}じ[効果]{こうか:effect}しかない","It has only the same effect as formatting",{"label":29,"jp":790,"en":791},"SSDに[対]{たい:for}しても[完全]{かんぜん:completely}に[有効]{ゆうこう:effective}","It is completely effective for SSDs as well",{"en":793,"jp":794},"Software erasure overwrites the entire disk multiple times with random data to make recovery difficult. Physical destruction is more reliable, and SSDs may not be fully erased due to wear leveling.","ソフトウェア[消去]{しょうきょ:erasure}は、ディスク[全体]{ぜんたい:entire}にランダムデータを[複数]{ふくすう:multiple}[回]{かい:times}[上書]{うわが:overwrite}きして[復元]{ふくげん:recovery}を[困難]{こんなん:difficult}にする[方法]{ほうほう:method}。ただし[物理的]{ぶつりてき:physical}[破壊]{はかい:destruction}の[方]{ほう:side}が[確実]{かくじつ:reliable}であり、SSDではウェアレベリングの[影響]{えいきょう:influence}で[完全]{かんぜん:complete}な[消去]{しょうきょ:erasure}が[難]{むずか:difficult}しい[場合]{ばあい:case}がある。",[796],"data-erasure",{"id":798,"articleId":707,"question":799,"options":802,"correctLabel":25,"explanation":815,"tags":818},"kjh-mock-k2v2-q35",{"en":800,"jp":801},"If RPO is set to 24 hours, what is the minimum backup frequency needed?","RPOを24[時間]{じかん:hours}に[設定]{せってい:set}した[場合]{ばあい:case}、[最低]{さいてい:minimum}どの[頻度]{ひんど:frequency}でバックアップを[取]{と:take}る[必要]{ひつよう:need}があるか。",[803,806,809,812],{"label":17,"jp":804,"en":805},"[毎週]{まいしゅう:weekly}1[回]{かい:time}","Once a week",{"label":21,"jp":807,"en":808},"[毎月]{まいつき:monthly}1[回]{かい:time}","Once a month",{"label":25,"jp":810,"en":811},"[毎日]{まいにち:daily}1[回]{かい:time}[以上]{いじょう:or more}","At least once a day",{"label":29,"jp":813,"en":814},"[年]{ねん:year}1[回]{かい:time}","Once a year",{"en":816,"jp":817},"With an RPO of 24 hours, up to 24 hours of data loss is tolerable, so at least one daily backup is necessary.","RPO（[復旧]{ふっきゅう:recovery}[時点]{じてん:point}[目標]{もくひょう:objective}）が24[時間]{じかん:hours}の[場合]{ばあい:case}、[最大]{さいだい:maximum}24[時間]{じかん:hours}[分]{ぶん:worth}のデータ[損失]{そんしつ:loss}が[許容]{きょよう:tolerable}されるため、[少]{すく:at least}なくとも[毎日]{まいにち:daily}1[回]{かい:time}のバックアップが[必要]{ひつよう:necessary}。",[819,820],"BCP","RPO",{"id":822,"articleId":707,"question":823,"options":826,"correctLabel":25,"explanation":839,"tags":842},"kjh-mock-k2v2-q36",{"en":824,"jp":825},"Which DR site type is most appropriate when RTO is set to 4 hours?","RTOを4[時間]{じかん:hours}に[設定]{せってい:set}した[場合]{ばあい:case}に[最]{もっと:most}も[適切]{てきせつ:appropriate}なDRサイトの[種類]{しゅるい:type}はどれか。",[827,830,833,836],{"label":17,"jp":828,"en":829},"コールドサイト","Cold site",{"label":21,"jp":831,"en":832},"ウォームサイト","Warm site",{"label":25,"jp":834,"en":835},"ホットサイト","Hot site",{"label":29,"jp":837,"en":838},"バックアップサイトは[不要]{ふよう:unnecessary}","No backup site needed",{"en":840,"jp":841},"With a short 4-hour RTO, a hot site with constant standby and immediate switchover capability is appropriate. A cold site takes days to weeks to set up, making it inappropriate.","RTO（[復旧]{ふっきゅう:recovery}[時間]{じかん:time}[目標]{もくひょう:objective}）が4[時間]{じかん:hours}と[短]{みじか:short}い[場合]{ばあい:case}、[常時]{じょうじ:constantly}[待機]{たいき:standby}で[即時]{そくじ:immediate}[切替]{きりかえ:switchover}[可能]{かのう:possible}なホットサイトが[適切]{てきせつ:appropriate}。コールドサイトは[構築]{こうちく:setup}に[数日]{すうじつ:several days}〜[数週間]{すうしゅうかん:several weeks}かかるため[不適切]{ふてきせつ:inappropriate}。",[819,843,844],"RTO","DR-site",{"id":846,"articleId":847,"question":848,"options":851,"correctLabel":21,"explanation":864,"tags":867},"kjh-mock-k2v2-q37","kjh-k1-h02-kihon-rinen",{"en":849,"jp":850},"Which correctly describes incremental backup?","[増分]{ぞうぶん:incremental}バックアップの[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[852,855,858,861],{"label":17,"jp":853,"en":854},"[毎回]{まいかい:every time}[全]{すべ:all}てのデータをバックアップする","Backs up all data every time",{"label":21,"jp":856,"en":857},"[前回]{ぜんかい:previous}のバックアップ[以降]{いこう:since}に[変更]{へんこう:changed}されたデータのみをバックアップする","Backs up only data changed since the last backup",{"label":25,"jp":859,"en":860},"[前回]{ぜんかい:previous}のフルバックアップ[以降]{いこう:since}の[全]{すべ:all}ての[変更]{へんこう:changes}をバックアップする","Backs up all changes since the last full backup",{"label":29,"jp":862,"en":863},"バックアップを[取]{と:take}らない","Does not take a backup",{"en":865,"jp":866},"Incremental backup covers only data changed since the last backup (full or incremental). Option C describes differential backup. Incremental is faster to back up but requires all increments for restoration.","[増分]{ぞうぶん:incremental}バックアップは[前回]{ぜんかい:previous}のバックアップ（フルまたは[増分]{ぞうぶん:incremental}）[以降]{いこう:since}に[変更]{へんこう:changed}されたデータのみを[対象]{たいしょう:scope}とする。ウは[差分]{さぶん:differential}バックアップの[説明]{せつめい:description}。[増分]{ぞうぶん:incremental}は[差分]{さぶん:differential}よりバックアップ[時間]{じかん:time}が[短]{みじか:short}いが、[復元]{ふくげん:restore}[時]{じ:time}は[全]{すべ:all}ての[増分]{ぞうぶん:incremental}が[必要]{ひつよう:necessary}。",[868],"backup",{"id":870,"articleId":364,"question":871,"options":874,"correctLabel":21,"explanation":887,"tags":890},"kjh-mock-k2v2-q38",{"en":872,"jp":873},"Which is the most appropriate backup data storage location as a disaster countermeasure?","[災害]{さいがい:disaster}[対策]{たいさく:measures}としてバックアップデータの[保管]{ほかん:storage}[場所]{ばしょ:location}で[最]{もっと:most}も[適切]{てきせつ:appropriate}なものはどれか。",[875,878,881,884],{"label":17,"jp":876,"en":877},"[本社]{ほんしゃ:head office}サーバルーム[内]{ない:within}の[金庫]{きんこ:safe}","A safe within the head office server room",{"label":21,"jp":879,"en":880},"[本社]{ほんしゃ:head office}とは[地理的]{ちりてき:geographically}に[離]{はな:separate}れた[遠隔地]{えんかくち:remote location}","A geographically separate remote location from the head office",{"label":25,"jp":882,"en":883},"[担当者]{たんとうしゃ:person in charge}の[自宅]{じたく:home}","The person in charge's home",{"label":29,"jp":885,"en":886},"[本社]{ほんしゃ:head office}の[隣]{となり:adjacent}のビル","The building adjacent to the head office",{"en":888,"jp":889},"For disaster preparedness, backups should be stored at a geographically separate remote location from the head office. The same region could be affected by the same disaster. Personal homes have insufficient safety management.","[災害]{さいがい:disaster}[対策]{たいさく:measures}として、バックアップデータは[本社]{ほんしゃ:head office}とは[地理的]{ちりてき:geographically}に[離]{はな:separate}れた[遠隔地]{えんかくち:remote location}に[保管]{ほかん:store}すべき。[同]{おな:same}じ[地域]{ちいき:region}では[同]{おな:same}じ[災害]{さいがい:disaster}で[被害]{ひがい:damage}を[受]{う:receive}ける[可能性]{かのうせい:possibility}がある。[個人]{こじん:individual}[宅]{たく:home}は[安全]{あんぜん:safety}[管理]{かんり:management}が[不十分]{ふじゅうぶん:insufficient}。",[819,868],{"id":892,"articleId":707,"question":893,"options":896,"correctLabel":17,"explanation":909,"tags":912},"kjh-mock-k2v2-q39",{"en":894,"jp":895},"Which is an appropriate measure under the clear screen policy?","クリアスクリーンポリシーとして[適切]{てきせつ:appropriate}な[対策]{たいさく:measure}はどれか。",[897,900,903,906],{"label":17,"jp":898,"en":899},"[離席]{りせき:leaving seat}[時]{じ:time}にスクリーンセーバーとパスワードロックを[有効]{ゆうこう:activate}にする","Activating a screen saver and password lock when leaving one's seat",{"label":21,"jp":901,"en":902},"モニターの[輝度]{きど:brightness}を[最大]{さいだい:maximum}にする","Maximizing monitor brightness",{"label":25,"jp":904,"en":905},"デスクトップの[壁紙]{かべがみ:wallpaper}を[統一]{とういつ:unify}する","Unifying desktop wallpaper",{"label":29,"jp":907,"en":908},"モニターを2[台]{だい:units}[使用]{しよう:use}する","Using two monitors",{"en":910,"jp":911},"Clear screen policy means locking the PC screen when away so third parties cannot see information. Automatic screen saver with password lock is effective. Brightness and wallpaper are unrelated to security.","クリアスクリーンポリシーは[離席]{りせき:leaving seat}[時]{じ:time}にPC[画面]{がめん:screen}をロックし、[第三者]{だいさんしゃ:third party}に[情報]{じょうほう:information}が[見]{み:see}えないようにすること。スクリーンセーバーとパスワードロックの[自動]{じどう:automatic}[起動]{きどう:activation}が[有効]{ゆうこう:effective}。[輝度]{きど:brightness}や[壁紙]{かべがみ:wallpaper}はセキュリティとは[無関係]{むかんけい:unrelated}。",[913],"clear-desk-screen",{"id":915,"articleId":707,"question":916,"options":919,"correctLabel":17,"explanation":932,"tags":935},"kjh-mock-k2v2-q40",{"en":917,"jp":918},"Which is an appropriate measure for preventing theft of equipment and electronic media?","[機器]{きき:equipment}・[電子]{でんし:electronic}[媒体]{ばいたい:media}の[盗難]{とうなん:theft}[防止]{ぼうし:prevention}[策]{さく:measure}として[適切]{てきせつ:appropriate}なものはどれか。",[920,923,926,929],{"label":17,"jp":921,"en":922},"ノートPCにセキュリティワイヤーを[取]{と:attach}り[付]{つ:attach}ける","Attaching a security wire to a laptop",{"label":21,"jp":924,"en":925},"[従業者]{じゅうぎょうしゃ:employees}に[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}の[研修]{けんしゅう:training}を[行]{おこな:conduct}う","Conducting personal information protection training for employees",{"label":25,"jp":927,"en":928},"パスワードを[定期的]{ていきてき:periodically}に[変更]{へんこう:change}する","Changing passwords periodically",{"label":29,"jp":930,"en":931},"[通信]{つうしん:communication}をSSL\u002FTLSで[暗号化]{あんごうか:encrypt}する","Encrypting communications with SSL\u002FTLS",{"en":933,"jp":934},"Security wire securing is a physical theft prevention measure for equipment like laptops. B is a human measure; C and D are technical measures, not direct theft prevention.","セキュリティワイヤーによる[固定]{こてい:securing}は、ノートPCなどの[機器]{きき:equipment}の[物理的]{ぶつりてき:physical}な[盗難]{とうなん:theft}[防止]{ぼうし:prevention}[策]{さく:measure}。イは[人的]{じんてき:human}[措置]{そち:measures}、ウ・エは[技術的]{ぎじゅつてき:technical}[措置]{そち:measures}であり、[盗難]{とうなん:theft}[防止]{ぼうし:prevention}の[直接的]{ちょくせつてき:direct}な[対策]{たいさく:measure}ではない。",[772],{"id":937,"articleId":108,"question":938,"options":941,"correctLabel":21,"explanation":954,"tags":957},"kjh-mock-k2v2-q41",{"en":939,"jp":940},"Which correctly describes the hybrid encryption method used in SSL\u002FTLS communication?","SSL\u002FTLS[通信]{つうしん:communication}で[使]{つか:use}われるハイブリッド[暗号]{あんごう:cipher}[方式]{ほうしき:method}の[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[942,945,948,951],{"label":17,"jp":943,"en":944},"[共通鍵]{きょうつうかぎ:symmetric key}のみで[通信]{つうしん:communication}を[暗号化]{あんごうか:encrypt}する","Encrypting communication with symmetric keys only",{"label":21,"jp":946,"en":947},"[公開鍵]{こうかいかぎ:public key}[暗号]{あんごう:cipher}で[共通鍵]{きょうつうかぎ:symmetric key}を[安全]{あんぜん:safely}に[交換]{こうかん:exchange}し、[実際]{じっさい:actual}のデータ[通信]{つうしん:communication}は[共通鍵]{きょうつうかぎ:symmetric key}で[暗号化]{あんごうか:encrypt}する","Exchanging the symmetric key safely with public-key encryption, then encrypting actual data with the symmetric key",{"label":25,"jp":949,"en":950},"[公開鍵]{こうかいかぎ:public key}のみで[全]{すべ:all}ての[通信]{つうしん:communication}を[暗号化]{あんごうか:encrypt}する","Encrypting all communication with public keys only",{"label":29,"jp":952,"en":953},"ハッシュ[関数]{かんすう:function}のみで[暗号化]{あんごうか:encrypt}する","Encrypting with hash functions only",{"en":955,"jp":956},"SSL\u002FTLS uses public-key encryption to safely exchange a session key (symmetric key), then uses the faster symmetric-key encryption for subsequent communication. Using only public keys would be too slow.","SSL\u002FTLSは、[公開鍵]{こうかいかぎ:public key}[暗号]{あんごう:cipher}でセッション[鍵]{かぎ:key}（[共通鍵]{きょうつうかぎ:symmetric key}）を[安全]{あんぜん:safely}に[交換]{こうかん:exchange}し、[以降]{いこう:thereafter}の[通信]{つうしん:communication}は[高速]{こうそく:high-speed}な[共通鍵]{きょうつうかぎ:symmetric key}[暗号]{あんごう:cipher}で[行]{おこな:carry out}うハイブリッド[方式]{ほうしき:method}。[公開鍵]{こうかいかぎ:public key}のみでは[処理]{しょり:processing}が[遅]{おそ:slow}い。",[958,959],"encryption","SSL-TLS",{"id":961,"articleId":108,"question":962,"options":965,"correctLabel":21,"explanation":978,"tags":981},"kjh-mock-k2v2-q42",{"en":963,"jp":964},"What is the role of a Certificate Authority (CA) in PKI (Public Key Infrastructure)?","PKI（[公開鍵]{こうかいかぎ:public key}[基盤]{きばん:infrastructure}）における[認証]{にんしょう:certificate}[局]{きょく:authority}（CA）の[役割]{やくわり:role}はどれか。",[966,969,972,975],{"label":17,"jp":967,"en":968},"マルウェアの[駆除]{くじょ:removal}","Malware removal",{"label":21,"jp":970,"en":971},"[電子]{でんし:electronic}[証明書]{しょうめいしょ:certificate}の[発行]{はっこう:issuance}と[管理]{かんり:management}","Issuance and management of electronic certificates",{"label":25,"jp":973,"en":974},"ネットワークの[帯域]{たいいき:bandwidth}[制御]{せいぎょ:control}","Network bandwidth control",{"label":29,"jp":976,"en":977},"バックアップデータの[保管]{ほかん:storage}","Backup data storage",{"en":979,"jp":980},"A Certificate Authority (CA) is an organization that issues and manages electronic certificates certifying the correspondence between public keys and their owners. It forms the trust foundation of PKI.","[認証]{にんしょう:certificate}[局]{きょく:authority}（CA）は、[公開鍵]{こうかいかぎ:public key}と[所有者]{しょゆうしゃ:owner}の[対応]{たいおう:correspondence}を[証明]{しょうめい:certify}する[電子]{でんし:electronic}[証明書]{しょうめいしょ:certificate}を[発行]{はっこう:issue}・[管理]{かんり:manage}する[機関]{きかん:organization}。PKIの[信頼]{しんらい:trust}の[基盤]{きばん:foundation}となる。",[982,958],"PKI",{"id":984,"articleId":108,"question":985,"options":988,"correctLabel":21,"explanation":1001,"tags":1004},"kjh-mock-k2v2-q43",{"en":986,"jp":987},"Which is a correct combination for multi-factor authentication (MFA)?","[多]{た:multi}[要素]{ようそ:factor}[認証]{にんしょう:authentication}（MFA）の[組]{く:combination}み[合]{あ:together}わせとして[正]{ただ:correct}しいものはどれか。",[989,992,995,998],{"label":17,"jp":990,"en":991},"パスワードとPINコード","Password and PIN code",{"label":21,"jp":993,"en":994},"パスワードとICカード","Password and IC card",{"label":25,"jp":996,"en":997},"ICカードと[社員証]{しゃいんしょう:employee ID card}","IC card and employee ID card",{"label":29,"jp":999,"en":1000},"[指紋]{しもん:fingerprint}と[虹彩]{こうさい:iris}","Fingerprint and iris",{"en":1002,"jp":1003},"MFA combines different types of authentication factors. Password (knowledge) + IC card (possession) combines different factors. A is both knowledge, C is both possession, D is both biometric—none are multi-factor.","MFAは[異]{こと:different}なる[種類]{しゅるい:types}の[認証]{にんしょう:authentication}[要素]{ようそ:factors}を[組]{く:combine}み[合]{あ:together}わせる。パスワード（[知識]{ちしき:knowledge}）＋ICカード（[所持]{しょじ:possession}）は[異]{こと:different}なる[要素]{ようそ:factors}の[組]{く:combination}み[合]{あ:together}わせ。アは[両方]{りょうほう:both}とも[知識]{ちしき:knowledge}、ウは[両方]{りょうほう:both}とも[所持]{しょじ:possession}、エは[両方]{りょうほう:both}とも[生体]{せいたい:biometric}で、[多]{た:multi}[要素]{ようそ:factor}にならない。",[1005,1006],"authentication","MFA",{"id":1008,"articleId":108,"question":1009,"options":1012,"correctLabel":21,"explanation":1025,"tags":1028},"kjh-mock-k2v2-q44",{"en":1010,"jp":1011},"What is the risk when FAR (False Acceptance Rate) is high?","FAR（[他人]{たにん:another person}[受入率]{うけいれりつ:acceptance rate}）が[高]{たか:high}い[場合]{ばあい:case}のリスクとして[正]{ただ:correct}しいものはどれか。",[1013,1016,1019,1022],{"label":17,"jp":1014,"en":1015},"[本人]{ほんにん:genuine person}が[認証]{にんしょう:authentication}を[通過]{つうか:pass}できない[頻度]{ひんど:frequency}が[増]{ふ:increase}える","The frequency of the genuine person failing authentication increases",{"label":21,"jp":1017,"en":1018},"[他人]{たにん:another person}が[誤]{あやま:mistakenly}って[認証]{にんしょう:authentication}を[通過]{つうか:pass}する[頻度]{ひんど:frequency}が[増]{ふ:increase}える","The frequency of another person mistakenly passing authentication increases",{"label":25,"jp":1020,"en":1021},"[認証]{にんしょう:authentication}[処理]{しょり:processing}が[遅]{おそ:slow}くなる","Authentication processing becomes slower",{"label":29,"jp":1023,"en":1024},"[認証]{にんしょう:authentication}システムが[停止]{ていし:halt}する","The authentication system halts",{"en":1026,"jp":1027},"When FAR is high, the risk of misidentifying another person as the genuine user increases, meaning reduced security. Option A describes the risk when FRR is high.","FAR（False Acceptance Rate）が[高]{たか:high}いと、[他人]{たにん:another person}を[本人]{ほんにん:genuine person}と[誤認]{ごにん:misidentify}して[受]{う:accept}け[入]{い:accept}れてしまうリスクが[高]{たか:increase}まる。これはセキュリティの[低下]{ていか:decline}を[意味]{いみ:mean}する。アはFRRが[高]{たか:high}い[場合]{ばあい:case}のリスク。",[1029,1030],"biometric-authentication","FAR-FRR",{"id":1032,"articleId":108,"question":1033,"options":1036,"correctLabel":21,"explanation":1049,"tags":1052},"kjh-mock-k2v2-q45",{"en":1034,"jp":1035},"Which correctly describes a characteristic of MAC (Mandatory Access Control)?","MAC（[強制]{きょうせい:mandatory}アクセス[制御]{せいぎょ:control}）の[特徴]{とくちょう:characteristic}として[正]{ただ:correct}しいものはどれか。",[1037,1040,1043,1046],{"label":17,"jp":1038,"en":1039},"[利用者]{りようしゃ:user}が[自分]{じぶん:own}の[所有]{しょゆう:owned}するファイルの[権限]{けんげん:permission}を[自由]{じゆう:freely}に[設定]{せってい:set}できる","Users can freely set permissions on files they own",{"label":21,"jp":1041,"en":1042},"システム[管理者]{かんりしゃ:administrator}が[設定]{せってい:set}したセキュリティラベルに[基]{もと:based}づき、[利用者]{りようしゃ:user}は[変更]{へんこう:change}できない","Based on security labels set by the system administrator, which users cannot change",{"label":25,"jp":1044,"en":1045},"[役割]{やくわり:role}に[基]{もと:based}づいて[権限]{けんげん:permission}を[付与]{ふよ:grant}する","Granting permissions based on roles",{"label":29,"jp":1047,"en":1048},"[認証]{にんしょう:authentication}なしでアクセスできる","Accessible without authentication",{"en":1050,"jp":1051},"MAC is mandatory access control where the system administrator sets security labels (confidentiality levels) that users cannot change. Option A is DAC; C is RBAC.","MACは、システム[管理者]{かんりしゃ:administrator}がセキュリティラベル（[機密]{きみつ:confidential}レベル）を[設定]{せってい:set}し、[利用者]{りようしゃ:user}は[変更]{へんこう:change}できない[強制的]{きょうせいてき:mandatory}なアクセス[制御]{せいぎょ:control}。アはDAC、ウはRBACの[説明]{せつめい:description}。",[1053,1054],"access-control","MAC",{"id":1056,"articleId":154,"question":1057,"options":1060,"correctLabel":21,"explanation":1073,"tags":1076},"kjh-mock-k2v2-q46",{"en":1058,"jp":1059},"Which correctly describes the main function of a WAF (Web Application Firewall)?","WAF（Web Application Firewall）の[主]{おも:main}な[機能]{きのう:function}として[正]{ただ:correct}しいものはどれか。",[1061,1064,1067,1070],{"label":17,"jp":1062,"en":1063},"ネットワーク[層]{そう:layer}のパケットフィルタリング","Network layer packet filtering",{"label":21,"jp":1065,"en":1066},"Webアプリケーション[層]{そう:layer}の[攻撃]{こうげき:attack}（SQLインジェクション、XSSなど）を[検知]{けんち:detect}・[防御]{ぼうぎょ:defend}","Detecting and defending against web application layer attacks (SQL injection, XSS, etc.)",{"label":25,"jp":1068,"en":1069},"メールのウイルス[検査]{けんさ:inspection}","Email virus inspection",{"label":29,"jp":1071,"en":1072},"VPN[接続]{せつぞく:connection}の[確立]{かくりつ:establishment}","VPN connection establishment",{"en":1074,"jp":1075},"WAF monitors web application layer traffic to detect and defend against attacks like SQL injection and XSS. It differs from a normal firewall (network layer) in its defense target.","WAFはWebアプリケーション[層]{そう:layer}の[通信]{つうしん:communication}を[監視]{かんし:monitor}し、SQLインジェクションやXSSなどの[攻撃]{こうげき:attacks}を[検知]{けんち:detect}・[防御]{ぼうぎょ:defend}する[専用]{せんよう:dedicated}のファイアウォール。[通常]{つうじょう:normal}のファイアウォール（ネットワーク[層]{そう:layer}）とは[防御]{ぼうぎょ:defense}[対象]{たいしょう:target}が[異]{こと:different}なる。",[1077,1078],"WAF","network",{"id":1080,"articleId":154,"question":1081,"options":1084,"correctLabel":17,"explanation":1097,"tags":1100},"kjh-mock-k2v2-q47",{"en":1082,"jp":1083},"What is the main purpose of a VPN (Virtual Private Network)?","VPN（Virtual Private Network）の[主]{おも:main}な[目的]{もくてき:purpose}はどれか。",[1085,1088,1091,1094],{"label":17,"jp":1086,"en":1087},"インターネット[上]{じょう:on}で[安全]{あんぜん:safe}な[通信]{つうしん:communication}[経路]{けいろ:route}を[確保]{かくほ:ensure}する","Ensuring a secure communication route on the internet",{"label":21,"jp":1089,"en":1090},"Webサイトの[表示]{ひょうじ:display}[速度]{そくど:speed}を[向上]{こうじょう:improve}させる","Improving website display speed",{"label":25,"jp":1092,"en":1093},"マルウェアを[自動]{じどう:automatically}[駆除]{くじょ:remove}する","Automatically removing malware",{"label":29,"jp":1095,"en":1096},"メールの[誤]{ご:accidental}[送信]{そうしん:sending}を[防止]{ぼうし:prevent}する","Preventing accidental email sending",{"en":1098,"jp":1099},"VPN uses encryption and tunneling to construct a secure virtual private line on the internet. It is used for safe internal network access during telework.","VPNは[暗号化]{あんごうか:encryption}やトンネリング[技術]{ぎじゅつ:technology}により、インターネット[上]{じょう:on}で[安全]{あんぜん:safe}な[仮想]{かそう:virtual}[専用]{せんよう:private}[回線]{かいせん:line}を[構築]{こうちく:construct}する[技術]{ぎじゅつ:technology}。テレワーク[時]{じ:time}の[安全]{あんぜん:safe}な[社内]{しゃない:internal}ネットワークアクセスなどに[使]{つか:use}われる。",[1101,1078],"VPN",{"id":1103,"articleId":154,"question":1104,"options":1107,"correctLabel":21,"explanation":1120,"tags":1123},"kjh-mock-k2v2-q48",{"en":1105,"jp":1106},"Which correctly describes EDR (Endpoint Detection and Response)?","EDR（Endpoint Detection and Response）の[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[1108,1111,1114,1117],{"label":17,"jp":1109,"en":1110},"ネットワーク[境界]{きょうかい:boundary}でパケットをフィルタリングする","Filtering packets at the network boundary",{"label":21,"jp":1112,"en":1113},"エンドポイント（PC等）の[挙動]{きょどう:behavior}を[監視]{かんし:monitor}し、[不審]{ふしん:suspicious}な[活動]{かつどう:activity}を[検知]{けんち:detect}・[対応]{たいおう:respond}する","Monitoring endpoint (PC, etc.) behavior and detecting\u002Fresponding to suspicious activity",{"label":25,"jp":1115,"en":1116},"データベースのバックアップを[自動化]{じどうか:automate}する","Automating database backups",{"label":29,"jp":1118,"en":1119},"[電子]{でんし:electronic}メールの[暗号化]{あんごうか:encryption}を[行]{おこな:perform}う","Performing email encryption",{"en":1121,"jp":1122},"EDR monitors endpoint behavior in real-time, detecting and responding to malware infections and suspicious activity. Unlike conventional antivirus (focused on prevention), EDR emphasizes post-intrusion detection and response.","EDRはエンドポイント（PC・サーバ等）の[挙動]{きょどう:behavior}をリアルタイムに[監視]{かんし:monitor}し、マルウェア[感染]{かんせん:infection}や[不審]{ふしん:suspicious}な[活動]{かつどう:activity}を[検知]{けんち:detect}して[対応]{たいおう:respond}する[仕組]{しく:mechanism}み。[従来]{じゅうらい:conventional}のウイルス[対策]{たいさく:countermeasure}ソフトが[侵入]{しんにゅう:intrusion}[防止]{ぼうし:prevention}を[重視]{じゅうし:emphasize}するのに[対]{たい:contrast}し、EDRは[侵入]{しんにゅう:intrusion}[後]{ご:after}の[検知]{けんち:detection}・[対応]{たいおう:response}を[重視]{じゅうし:emphasize}する。",[1124,59],"EDR",{"id":1126,"articleId":154,"question":1127,"options":1130,"correctLabel":25,"explanation":1143,"tags":1146},"kjh-mock-k2v2-q49",{"en":1128,"jp":1129},"Which is NOT an appropriate security measure for a telework environment?","テレワーク[環境]{かんきょう:environment}でのセキュリティ[対策]{たいさく:measures}として[適切]{てきせつ:appropriate}でないものはどれか。",[1131,1134,1137,1140],{"label":17,"jp":1132,"en":1133},"VPNを[利用]{りよう:use}して[社内]{しゃない:internal}ネットワークに[接続]{せつぞく:connect}する","Connecting to the internal network using VPN",{"label":21,"jp":1135,"en":1136},"[端末]{たんまつ:terminal}のOS・ソフトウェアを[最新]{さいしん:latest}の[状態]{じょうたい:state}に[保]{たも:maintain}つ","Keeping the terminal's OS and software up to date",{"label":25,"jp":1138,"en":1139},"[公共]{こうきょう:public}のフリーWi-Fiでパスワードなしで[接続]{せつぞく:connect}する","Connecting to public free Wi-Fi without a password",{"label":29,"jp":1141,"en":1142},"[多]{た:multi}[要素]{ようそ:factor}[認証]{にんしょう:authentication}を[利用]{りよう:use}する","Using multi-factor authentication",{"en":1144,"jp":1145},"Public free Wi-Fi is often unencrypted and poses eavesdropping and spoofing risks. Appropriate telework measures include VPN use, OS\u002Fsoftware updates, and MFA.","[公共]{こうきょう:public}のフリーWi-Fiは[暗号化]{あんごうか:encryption}されていない[場合]{ばあい:case}が[多]{おお:often}く、[盗聴]{とうちょう:eavesdropping}やなりすましのリスクがある。テレワーク[時]{じ:time}はVPNの[利用]{りよう:use}、OS・ソフトウェアの[更新]{こうしん:update}、MFAの[導入]{どうにゅう:introduction}が[適切]{てきせつ:appropriate}な[対策]{たいさく:measures}。",[1147,1078],"telework",{"id":1149,"articleId":154,"question":1150,"options":1153,"correctLabel":17,"explanation":1163,"tags":1166},"kjh-mock-k2v2-q50",{"en":1151,"jp":1152},"Among IaaS, PaaS, and SaaS cloud services, which has the widest user responsibility scope?","クラウドサービスのIaaS、PaaS、SaaSのうち、[利用者]{りようしゃ:user}の[責任]{せきにん:responsibility}[範囲]{はんい:scope}が[最]{もっと:most}も[広]{ひろ:wide}いものはどれか。",[1154,1156,1158,1160],{"label":17,"jp":1155,"en":1155},"IaaS",{"label":21,"jp":1157,"en":1157},"PaaS",{"label":25,"jp":1159,"en":1159},"SaaS",{"label":29,"jp":1161,"en":1162},"[全]{すべ:all}て[同]{おな:same}じ","All the same",{"en":1164,"jp":1165},"In IaaS, users are responsible for OS, middleware, applications, and data, making the responsibility scope widest. In SaaS, the provider manages most, and user responsibility is mainly limited to data and usage settings.","IaaSでは[利用者]{りようしゃ:user}がOS、ミドルウェア、アプリケーション、データの[管理]{かんり:management}[責任]{せきにん:responsibility}を[負]{お:bear}うため、[責任]{せきにん:responsibility}[範囲]{はんい:scope}が[最]{もっと:most}も[広]{ひろ:wide}い。SaaSでは[事業者]{じぎょうしゃ:provider}がほとんどを[管理]{かんり:manage}し、[利用者]{りようしゃ:user}の[責任]{せきにん:responsibility}は[主]{おも:mainly}にデータと[利用]{りよう:use}[設定]{せってい:settings}に[限]{かぎ:limit}られる。",[1167,1168],"cloud","shared-responsibility",{"culture-anime-studio-ghibli":1170,"culture-bonsai-art":1174,"tech-cybozu-kintone-no-code":1178,"living-denki-gas-suidou":1182,"tech-gree-mobile-game-ops":1186,"culture-green-tea-types":1190,"living-gym-fitness":1194,"living-internet-hikari":1198,"living-jisha-de-kau":1202,"exam-jlpt-n3-grammar":1206,"exam-jlpt-n3-vocab":1210,"bj-job-gata-koyou":1214,"culture-kabuki-noh-bunraku":1218,"bj-karoushi-hatarakikata":1222,"living-keitai-mobile-plan":1226,"living-konbini-atm-banking":1230,"living-kosodate-hoiku":1234,"culture-nihon-teien":1238,"bj-nomikai-survival":1242,"tech-pixiv-image-cdn":1246,"culture-sake-shochu":1250,"bj-sankyu-ikukyu":1254,"tech-sansan-eight-platform":1258,"culture-shichi-go-san":1262,"bj-shukatsu-shinsotsu":1266,"tech-smartnews-recommendation":1270,"bj-taishoku-todoke":1274,"bj-telework-policy":1278,"bj-tenshoku-resume":1282,"tech-yahoo-japan-search":1286,"culture-anime-business":1290,"exam-ap":1294,"exam-aws-japan":1298,"law-chosakuken":1302,"tech-cookpad-recipe-search":1306,"tech-cybozu-kintone-api":1310,"tech-dena-observability":1314,"law-denshi-chouho":1318,"tech-digital-cho-cloud":1322,"exam-fe":1326,"tech-freee-accounting":1330,"law-furiransu-hou":1334,"law-harassment":1338,"tech-hatena-mackerel":1342,"bj-hourensou":1346,"bj-hyouka-mendan":1350,"law-invoice":1354,"exam-it-passport":1358,"culture-izakaya":1362,"culture-j-league":1366,"culture-jinja-tera":1370,"exam-jlpt-n1-dokkai":1374,"exam-jlpt-n2-business":1378,"bj-kaigi-manner":1382,"living-kakutei-shinkoku":1386,"bj-keigo-kihon":1390,"law-keihin-hyouji":1394,"living-kenkou-hoken":1398,"living-kosei-nenkin":1402,"tech-line-llmops":1406,"tech-line-streaming":1410,"living-chintai-keiyaku":1414,"living-eijuken":1418,"living-engineer-visa":1422,"living-ginkou-koza":1426,"living-hikkoshi-checklist":1430,"living-koudo-senmon":1434,"culture-matsuri":1438,"bj-meishi-koukan":1442,"tech-mercari-merpay-id":1446,"tech-mercari-microservices":1450,"tech-mf-multitenant":1454,"bj-nemawashi-ringi":1458,"living-nenmatsu-chousei":1462,"bj-1on1":1466,"bj-online-kaigi":1470,"culture-onsen":1474,"culture-pro-baseball":1478,"culture-ramen":1482,"tech-recruit-data-platform":1486,"law-roukikihou-kihon":1490,"culture-sado":1494,"culture-sandou":1498,"culture-seasonal-events":1502,"exam-sg":1506,"bj-shagai-mail":1510,"bj-shanai-mail":1514,"culture-sumo":1518,"culture-sushi":1522,"culture-washoku":1526,"law-yuukyuu-kyuuka":1530,"kjh-k1-h04-anzen-kanri":1534,"bill-one-auth":1537,"contract-one-vision":1541,"kjh-k1-h04-daisan-sha-teikyou":1545,"eight-web-renewal":1549,"kjh-k1-h04-gaikoku-kiroku":1553,"kjh-k2-h04-gijutsu-jisshi":1557,"kjh-k2-h04-gijutsu-kiso":1560,"kjh-k1-h01-hotaikei":1563,"kjh-k1-h06-hoyu-data":1566,"kjh-k1-h07-kamei-kakou":1570,"kjh-k1-h05-kanren-joho":1574,"kjh-k1-h02-kihon-rinen":1578,"kjh-k1-h09-jikkousei":1581,"kjh-k1-h10-gyousei":1585,"kjh-k1-h11-my-number-hogo":1589,"kjh-k1-h11-my-number-sousoku":1593,"kjh-k2-h01-guideline":1597,"kjh-k2-h01-security-kiso":1600,"kjh-k2-h02-anzen-kanri-sochi":1603,"kjh-k2-h02-soshiki-kiso":1606,"kjh-k2-h03-office":1609,"kjh-k1-h03-riyou-mokuteki":1612,"sansan-data-intelligence":1616,"sansan-engineer-team-infra":1620,"sansan-honne-15":1624,"sansan-interview-110":1628,"sansan-interview-126":1632,"sansan-interview-127":1636,"sansan-interview-130":1640,"sansan-interview-40":1644,"sansan-oyaco":1648,"kjh-k1-h03-tekisei-shutoku":1652,"kjh-k1-h08-tokumei-kakou":1656},{"articleId":1171,"path":1172,"title":1173},"culture-anime-studio-ghibli","\u002Farticles\u002Fculture\u002Fanime-studio-ghibli","スタジオジブリ作品史 — 宮崎駿・高畑勲・鈴木敏夫が築いた40年",{"articleId":1175,"path":1176,"title":1177},"culture-bonsai-art","\u002Farticles\u002Fculture\u002Fbonsai-art","盆栽の世界 — 小宇宙を育てる日本の芸術",{"articleId":1179,"path":1180,"title":1181},"tech-cybozu-kintone-no-code","\u002Farticles\u002Ftech\u002Fcybozu-kintone-no-code","kintoneのローコード戦略 — 業務アプリを誰でも作れる仕組み",{"articleId":1183,"path":1184,"title":1185},"living-denki-gas-suidou","\u002Farticles\u002Fliving-in-japan\u002Fdenki-gas-suidou","電気・ガス・水道の契約 — 引越し時のライフライン手続き",{"articleId":1187,"path":1188,"title":1189},"tech-gree-mobile-game-ops","\u002Farticles\u002Ftech\u002Fgree-mobile-game-ops","GREEのモバイルゲーム運用 — リアルタイム対戦と決済の裏側",{"articleId":1191,"path":1192,"title":1193},"culture-green-tea-types","\u002Farticles\u002Fculture\u002Fgreen-tea-types","日本茶の種類と淹れ方 — 煎茶・玉露・抹茶の違い",{"articleId":1195,"path":1196,"title":1197},"living-gym-fitness","\u002Farticles\u002Fliving-in-japan\u002Fgym-fitness","ジムとフィットネスクラブ — 入会から解約までの実務ガイド",{"articleId":1199,"path":1200,"title":1201},"living-internet-hikari","\u002Farticles\u002Fliving-in-japan\u002Finternet-hikari-keiyaku","光回線とネット契約 — フレッツ・NURO・auひかり比較",{"articleId":1203,"path":1204,"title":1205},"living-jisha-de-kau","\u002Farticles\u002Fliving-in-japan\u002Fjisha-de-kau","日本で不動産を買う — 外国人でも住宅ローンを組む方法",{"articleId":1207,"path":1208,"title":1209},"exam-jlpt-n3-grammar","\u002Farticles\u002Fexams\u002Fjlpt-n3-grammar","JLPT N3 文法 — 初級から中級への橋渡し",{"articleId":1211,"path":1212,"title":1213},"exam-jlpt-n3-vocab","\u002Farticles\u002Fexams\u002Fjlpt-n3-vocab","JLPT N3 語彙対策 — 1500語をどう攻略するか",{"articleId":1215,"path":1216,"title":1217},"bj-job-gata-koyou","\u002Farticles\u002Fbusiness-japanese\u002Fjob-gata-koyou","ジョブ型雇用への移行 — メンバーシップ型からの脱却",{"articleId":1219,"path":1220,"title":1221},"culture-kabuki-noh-bunraku","\u002Farticles\u002Fculture\u002Fkabuki-noh-bunraku","歌舞伎・能・文楽 — 日本三大伝統演劇の世界",{"articleId":1223,"path":1224,"title":1225},"bj-karoushi-hatarakikata","\u002Farticles\u002Fbusiness-japanese\u002Fkaroushi-hatarakikata","過労死と働き方改革 — 残業規制の歴史と現状",{"articleId":1227,"path":1228,"title":1229},"living-keitai-mobile-plan","\u002Farticles\u002Fliving-in-japan\u002Fkeitai-mobile-plan","携帯電話契約の選び方 — 大手キャリア・MVNO・eSIM完全ガイド",{"articleId":1231,"path":1232,"title":1233},"living-konbini-atm-banking","\u002Farticles\u002Fliving-in-japan\u002Fkonbini-atm-banking","コンビニATMと電子マネー — 現金とキャッシュレスのハイブリッド生活",{"articleId":1235,"path":1236,"title":1237},"living-kosodate-hoiku","\u002Farticles\u002Fliving-in-japan\u002Fkosodate-hoiku","子育て支援と保育園 — 児童手当・保活・無償化制度",{"articleId":1239,"path":1240,"title":1241},"culture-nihon-teien","\u002Farticles\u002Fculture\u002Fnihon-teien","日本庭園の世界 — 池泉・枯山水・露地の様式",{"articleId":1243,"path":1244,"title":1245},"bj-nomikai-survival","\u002Farticles\u002Fbusiness-japanese\u002Fnomikai-survival","飲み会・ノミニケーション完全攻略 — 新人エンジニアのサバイバルガイド",{"articleId":1247,"path":1248,"title":1249},"tech-pixiv-image-cdn","\u002Farticles\u002Ftech\u002Fpixiv-image-cdn","pixivの画像配信基盤 — 数億イラストを世界に届ける技術",{"articleId":1251,"path":1252,"title":1253},"culture-sake-shochu","\u002Farticles\u002Fculture\u002Fsake-shochu","日本酒と焼酎入門 — 製法・産地・飲み方の基礎",{"articleId":1255,"path":1256,"title":1257},"bj-sankyu-ikukyu","\u002Farticles\u002Fbusiness-japanese\u002Fsankyu-ikukyu","産休・育休制度の実務 — 取得スケジュールと給付金",{"articleId":1259,"path":1260,"title":1261},"tech-sansan-eight-platform","\u002Farticles\u002Ftech\u002Fsansan-eight-platform","Eight 名刺SaaSの基盤進化 — モバイルから法人向けプラットフォームへ",{"articleId":1263,"path":1264,"title":1265},"culture-shichi-go-san","\u002Farticles\u002Fculture\u002Fshichi-go-san","七五三 — 子供の成長を祝う伝統行事",{"articleId":1267,"path":1268,"title":1269},"bj-shukatsu-shinsotsu","\u002Farticles\u002Fbusiness-japanese\u002Fshukatsu-shinsotsu","新卒就活の流れ — エントリーシートから内定まで",{"articleId":1271,"path":1272,"title":1273},"tech-smartnews-recommendation","\u002Farticles\u002Ftech\u002Fsmartnews-recommendation","SmartNewsの推薦システム — ニュースを最適化する機械学習",{"articleId":1275,"path":1276,"title":1277},"bj-taishoku-todoke","\u002Farticles\u002Fbusiness-japanese\u002Ftaishoku-todoke","退職届と退職願 — 違いと書き方、円満退職への手順",{"articleId":1279,"path":1280,"title":1281},"bj-telework-policy","\u002Farticles\u002Fbusiness-japanese\u002Ftelework-policy","テレワーク制度の現状 — コロナ後の在宅勤務とハイブリッド",{"articleId":1283,"path":1284,"title":1285},"bj-tenshoku-resume","\u002Farticles\u002Fbusiness-japanese\u002Ftenshoku-resume","転職活動の進め方 — 履歴書と職務経歴書の書き方",{"articleId":1287,"path":1288,"title":1289},"tech-yahoo-japan-search","\u002Farticles\u002Ftech\u002Fyahoo-japan-search","Yahoo! JAPAN検索の基盤 — 日本語特化の大規模検索システム",{"articleId":1291,"path":1292,"title":1293},"culture-anime-business","\u002Farticles\u002Fculture\u002Fanime-business","アニメ・漫画文化と産業構造 — グローバル展開の現状",{"articleId":1295,"path":1296,"title":1297},"exam-ap","\u002Farticles\u002Fexams\u002Fap","応用情報技術者試験 — 重点出題分野",{"articleId":1299,"path":1300,"title":1301},"exam-aws-japan","\u002Farticles\u002Fexams\u002Faws-japan","AWS認定 — 日本語受験のコツ",{"articleId":1303,"path":1304,"title":1305},"law-chosakuken","\u002Farticles\u002Flaw\u002Fchosakuken","著作権法 — エンジニアが知っておくべき基礎",{"articleId":1307,"path":1308,"title":1309},"tech-cookpad-recipe-search","\u002Farticles\u002Ftech\u002Fcookpad-recipe-search-ranking","Cookpadのレシピ検索 — 学習to-rank実装",{"articleId":1311,"path":1312,"title":1313},"tech-cybozu-kintone-api","\u002Farticles\u002Ftech\u002Fcybozu-kintone-api-design","kintone API設計の十年 — 後方互換性との戦い",{"articleId":1315,"path":1316,"title":1317},"tech-dena-observability","\u002Farticles\u002Ftech\u002Fdena-mobile-game-observability","DeNAのモバイルゲーム監視基盤",{"articleId":1319,"path":1320,"title":1321},"law-denshi-chouho","\u002Farticles\u002Flaw\u002Fdenshi-chouho","電子帳簿保存法 — スキャナ保存と電子取引保存の対応",{"articleId":1323,"path":1324,"title":1325},"tech-digital-cho-cloud","\u002Farticles\u002Ftech\u002Fdigital-cho-government-cloud","デジタル庁ガバメントクラウド技術詳細",{"articleId":1327,"path":1328,"title":1329},"exam-fe","\u002Farticles\u002Fexams\u002Ffe","基本情報技術者試験 — シラバス全体像",{"articleId":1331,"path":1332,"title":1333},"tech-freee-accounting","\u002Farticles\u002Ftech\u002Ffreee-accounting-integrity","freeeの会計データ整合性 — 仕訳バランスの自動検証",{"articleId":1335,"path":1336,"title":1337},"law-furiransu-hou","\u002Farticles\u002Flaw\u002Ffuriransu-hou","フリーランス保護法（2024年施行）— 取引適正化のポイント",{"articleId":1339,"path":1340,"title":1341},"law-harassment","\u002Farticles\u002Flaw\u002Fharassment","ハラスメント関連法 — パワハラ・セクハラ・マタハラ防止義務",{"articleId":1343,"path":1344,"title":1345},"tech-hatena-mackerel","\u002Farticles\u002Ftech\u002Fhatena-mackerel-alert-design","MackerelのAlert設計思想",{"articleId":1347,"path":1348,"title":1349},"bj-hourensou","\u002Farticles\u002Fbusiness-japanese\u002Fhourensou","報・連・相 — 日本企業のコミュニケーションの基本",{"articleId":1351,"path":1352,"title":1353},"bj-hyouka-mendan","\u002Farticles\u002Fbusiness-japanese\u002Fhyouka-mendan","評価面談の準備と振り返り",{"articleId":1355,"path":1356,"title":1357},"law-invoice","\u002Farticles\u002Flaw\u002Finvoice-seido","インボイス制度の仕組みと実務 — 適格請求書発行事業者",{"articleId":1359,"path":1360,"title":1361},"exam-it-passport","\u002Farticles\u002Fexams\u002Fit-passport","ITパスポート試験 — 概要と学習法",{"articleId":1363,"path":1364,"title":1365},"culture-izakaya","\u002Farticles\u002Fculture\u002Fizakaya","居酒屋文化と乾杯のマナー — お通しから締めまで",{"articleId":1367,"path":1368,"title":1369},"culture-j-league","\u002Farticles\u002Fculture\u002Fj-league","Jリーグの歴史と地域密着 — 1993年開幕から30年",{"articleId":1371,"path":1372,"title":1373},"culture-jinja-tera","\u002Farticles\u002Fculture\u002Fjinja-tera","神社と寺の違い、参拝マナー",{"articleId":1375,"path":1376,"title":1377},"exam-jlpt-n1-dokkai","\u002Farticles\u002Fexams\u002Fjlpt-n1-dokkai","JLPT N1 — 読解問題のアプローチ",{"articleId":1379,"path":1380,"title":1381},"exam-jlpt-n2-business","\u002Farticles\u002Fexams\u002Fjlpt-n2-business","JLPT N2 — ビジネス語彙集中対策",{"articleId":1383,"path":1384,"title":1385},"bj-kaigi-manner","\u002Farticles\u002Fbusiness-japanese\u002Fkaigi-manner","会議のマナーと進め方 — 司会から議事録まで",{"articleId":1387,"path":1388,"title":1389},"living-kakutei-shinkoku","\u002Farticles\u002Fliving-in-japan\u002Fkakutei-shinkoku","確定申告の基本 — 給与所得・副業・控除",{"articleId":1391,"path":1392,"title":1393},"bj-keigo-kihon","\u002Farticles\u002Fbusiness-japanese\u002Fkeigo-kihon","ビジネス敬語の基本 — 尊敬語・謙譲語・丁寧語の使い分け",{"articleId":1395,"path":1396,"title":1397},"law-keihin-hyouji","\u002Farticles\u002Flaw\u002Fkeihin-hyouji","改正景品表示法とステマ規制 — マーケティングの法的注意点",{"articleId":1399,"path":1400,"title":1401},"living-kenkou-hoken","\u002Farticles\u002Fliving-in-japan\u002Fkenkou-hoken","健康保険の入門 — 国保と社保の違い",{"articleId":1403,"path":1404,"title":1405},"living-kosei-nenkin","\u002Farticles\u002Fliving-in-japan\u002Fkosei-nenkin","厚生年金と国民年金 — 老後の備えと現役の負担",{"articleId":1407,"path":1408,"title":1409},"tech-line-llmops","\u002Farticles\u002Ftech\u002Fline-llmops","LINEのLLMOps — 大規模言語モデル運用の取り組み",{"articleId":1411,"path":1412,"title":1413},"tech-line-streaming","\u002Farticles\u002Ftech\u002Fline-streaming","LINEの大規模リアルタイム配信基盤",{"articleId":1415,"path":1416,"title":1417},"living-chintai-keiyaku","\u002Farticles\u002Fliving-in-japan\u002Fliving-chintai-keiyaku","賃貸契約と保証会社 — 礼金・敷金から保証料まで",{"articleId":1419,"path":1420,"title":1421},"living-eijuken","\u002Farticles\u002Fliving-in-japan\u002Fliving-eijuken","永住権申請の最新基準 — 一般・高度専門職ルート比較",{"articleId":1423,"path":1424,"title":1425},"living-engineer-visa","\u002Farticles\u002Fliving-in-japan\u002Fliving-engineer-visa","エンジニアの在留資格 — 「技術・人文知識・国際業務」ビザの取得手順",{"articleId":1427,"path":1428,"title":1429},"living-ginkou-koza","\u002Farticles\u002Fliving-in-japan\u002Fliving-ginkou-koza","銀行口座開設とクレジットカード — 外国人エンジニアの実務",{"articleId":1431,"path":1432,"title":1433},"living-hikkoshi-checklist","\u002Farticles\u002Fliving-in-japan\u002Fliving-hikkoshi-checklist","引越し手続きチェックリスト — 役所・ライフライン・住所変更",{"articleId":1435,"path":1436,"title":1437},"living-koudo-senmon","\u002Farticles\u002Fliving-in-japan\u002Fliving-koudo-senmon","高度専門職ビザの実務 — ポイント制度と特権",{"articleId":1439,"path":1440,"title":1441},"culture-matsuri","\u002Farticles\u002Fculture\u002Fmatsuri","日本の祭り — 季節と地域の象徴",{"articleId":1443,"path":1444,"title":1445},"bj-meishi-koukan","\u002Farticles\u002Fbusiness-japanese\u002Fmeishi-koukan","名刺交換の作法 — 第一印象を決める数十秒",{"articleId":1447,"path":1448,"title":1449},"tech-mercari-merpay-id","\u002Farticles\u002Ftech\u002Fmercari-merpay-id","メルペイのID基盤 — eKYC・本人確認の技術",{"articleId":1451,"path":1452,"title":1453},"tech-mercari-microservices","\u002Farticles\u002Ftech\u002Fmercari-microservices-migration","Mercariのマイクロサービス移行 — モノリスから次世代へ",{"articleId":1455,"path":1456,"title":1457},"tech-mf-multitenant","\u002Farticles\u002Ftech\u002Fmoneyforward-multitenant-saas","Money Forwardのマルチテナント設計 — データ分離とセキュリティ",{"articleId":1459,"path":1460,"title":1461},"bj-nemawashi-ringi","\u002Farticles\u002Fbusiness-japanese\u002Fnemawashi-ringi","根回しと稟議 — 日本企業の意思決定の仕組み",{"articleId":1463,"path":1464,"title":1465},"living-nenmatsu-chousei","\u002Farticles\u002Fliving-in-japan\u002Fnenmatsu-chousei","年末調整の仕組み — 会社員のための税精算",{"articleId":1467,"path":1468,"title":1469},"bj-1on1","\u002Farticles\u002Fbusiness-japanese\u002Fone-on-one","1on1ミーティングの活用法 — 上司と部下の対話",{"articleId":1471,"path":1472,"title":1473},"bj-online-kaigi","\u002Farticles\u002Fbusiness-japanese\u002Fonline-kaigi","オンライン会議のエチケット — Zoom時代のビジネスマナー",{"articleId":1475,"path":1476,"title":1477},"culture-onsen","\u002Farticles\u002Fculture\u002Fonsen","温泉文化と入浴マナー — 名湯巡りの楽しみ方",{"articleId":1479,"path":1480,"title":1481},"culture-pro-baseball","\u002Farticles\u002Fculture\u002Fpro-baseball","プロ野球と高校野球 — 国民的スポーツの二つの顔",{"articleId":1483,"path":1484,"title":1485},"culture-ramen","\u002Farticles\u002Fculture\u002Framen","ラーメン地域ごとの違い — 札幌・博多・喜多方",{"articleId":1487,"path":1488,"title":1489},"tech-recruit-data-platform","\u002Farticles\u002Ftech\u002Frecruit-data-platform","Recruit データ基盤刷新事例 — 数十サービスの統合",{"articleId":1491,"path":1492,"title":1493},"law-roukikihou-kihon","\u002Farticles\u002Flaw\u002Froukikihou-kihon","労働基準法の基本 — 労働時間・休憩・残業規制",{"articleId":1495,"path":1496,"title":1497},"culture-sado","\u002Farticles\u002Fculture\u002Fsado","茶道入門 — 千利休と侘び寂びの精神",{"articleId":1499,"path":1500,"title":1501},"culture-sandou","\u002Farticles\u002Fculture\u002Fsandou","茶華書三道 — 日本の精神を体現する三つの道",{"articleId":1503,"path":1504,"title":1505},"culture-seasonal-events","\u002Farticles\u002Fculture\u002Fseasonal-events","季節の行事 — 正月から年末まで日本の年中行事",{"articleId":1507,"path":1508,"title":1509},"exam-sg","\u002Farticles\u002Fexams\u002Fsg","情報セキュリティマネジメント試験 — 管理者向けセキュリティ",{"articleId":1511,"path":1512,"title":1513},"bj-shagai-mail","\u002Farticles\u002Fbusiness-japanese\u002Fshagai-mail","社外メールの書き方 — お詫び・依頼・確認",{"articleId":1515,"path":1516,"title":1517},"bj-shanai-mail","\u002Farticles\u002Fbusiness-japanese\u002Fshanai-mail","社内メールの書き方 — 件名から結びまで",{"articleId":1519,"path":1520,"title":1521},"culture-sumo","\u002Farticles\u002Fculture\u002Fsumo","大相撲 — 番付と力士の生活",{"articleId":1523,"path":1524,"title":1525},"culture-sushi","\u002Farticles\u002Fculture\u002Fsushi","寿司の歴史と種類 — なれずしから江戸前まで",{"articleId":1527,"path":1528,"title":1529},"culture-washoku","\u002Farticles\u002Fculture\u002Fwashoku","和食 — ユネスコ無形文化遺産と一汁三菜",{"articleId":1531,"path":1532,"title":1533},"law-yuukyuu-kyuuka","\u002Farticles\u002Flaw\u002Fyuukyuu-kyuuka","有給休暇の取得ルールと最新改正",{"articleId":481,"path":1535,"title":1536},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fanzen-kanri","課題Ⅰ 第４編① 個人データに関する義務 ― 正確性の確保・安全管理措置・漏えい報告",{"articleId":1538,"path":1539,"title":1540},"bill-one-auth","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fbill-one-auth","インボイス管理サービスBill Oneの認証を内製認証基盤に置き換えて認証基盤のコストを削減した話",{"articleId":1542,"path":1543,"title":1544},"contract-one-vision","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fcontract-one-vision","契約書を\"意思決定のインフラ\"に──Contract Oneで挑む、新たな価値創造",{"articleId":1546,"path":1547,"title":1548},"kjh-k1-h04-daisan-sha-teikyou","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fdaisan-sha-teikyou","課題Ⅰ 第４編② 第三者提供の制限 ― 同意・オプトアウト・非該当類型",{"articleId":1550,"path":1551,"title":1552},"eight-web-renewal","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Feight-web-renewal","Web版Eightのリニューアルと、安全なリリースのための取り組み",{"articleId":1554,"path":1555,"title":1556},"kjh-k1-h04-gaikoku-kiroku","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fgaikoku-kiroku","課題Ⅰ 第４編③ 外国にある第三者への提供の制限・記録義務・確認義務（法28条〜30条）",{"articleId":154,"path":1558,"title":1559},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fgijutsu-jisshi","課題Ⅱ 第４編② 技術的安全管理措置の実施項目",{"articleId":108,"path":1561,"title":1562},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fgijutsu-kiso","課題Ⅱ 第４編① 技術的セキュリティ対策の基礎知識",{"articleId":224,"path":1564,"title":1565},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fhotaikei","課題Ⅰ 第１編 個人情報保護の法体系と各種認定制度",{"articleId":1567,"path":1568,"title":1569},"kjh-k1-h06-hoyu-data","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fhoyu-data","課題Ⅰ 第６編 保有個人データに関する義務",{"articleId":1571,"path":1572,"title":1573},"kjh-k1-h07-kamei-kakou","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkamei-kakou","課題Ⅰ 第７編 仮名加工情報（法41条・42条）",{"articleId":1575,"path":1576,"title":1577},"kjh-k1-h05-kanren-joho","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkanren-joho","課題Ⅰ 第５編 個人関連情報に関する義務（法31条）",{"articleId":847,"path":1579,"title":1580},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkihon-rinen","課題Ⅰ 第２編 個人情報保護法の目的・基本理念と用語の定義",{"articleId":1582,"path":1583,"title":1584},"kjh-k1-h09-jikkousei","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h09-jikkousei","課題Ⅰ 第９編 実効性を担保する仕組み等",{"articleId":1586,"path":1587,"title":1588},"kjh-k1-h10-gyousei","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h10-gyousei","課題Ⅰ 第10編 行政機関等における個人情報等の取扱い",{"articleId":1590,"path":1591,"title":1592},"kjh-k1-h11-my-number-hogo","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h11-my-number-hogo","課題Ⅰ 第11編② マイナンバー法 ― 特定個人情報の提供制限・保護・監督・罰則（法19条〜57条）",{"articleId":1594,"path":1595,"title":1596},"kjh-k1-h11-my-number-sousoku","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h11-my-number-sousoku","課題Ⅰ 第11編① マイナンバー法 ― 総則・個人番号・個人番号カード（法1条〜18条の5）",{"articleId":271,"path":1598,"title":1599},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h01-guideline","課題Ⅱ 第１編② セキュリティ対策基準とガイドライン",{"articleId":11,"path":1601,"title":1602},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h01-security-kiso","課題Ⅱ 第１編① 情報セキュリティの基礎と脅威",{"articleId":457,"path":1604,"title":1605},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h02-anzen-kanri-sochi","課題Ⅱ 第２編② 組織的・人的セキュリティ ― 安全管理措置・委託先監督・事故対応",{"articleId":364,"path":1607,"title":1608},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h02-soshiki-kiso","課題Ⅱ 第２編① 組織的・人的セキュリティ ― 基本方針の策定からリスク管理・規程整備まで",{"articleId":707,"path":1610,"title":1611},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Foffice","課題Ⅱ 第３編 オフィスセキュリティ",{"articleId":1613,"path":1614,"title":1615},"kjh-k1-h03-riyou-mokuteki","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Friyou-mokuteki","課題Ⅰ 第３編① 利用目的の特定・変更と利用目的による制限、不適正な利用の禁止",{"articleId":1617,"path":1618,"title":1619},"sansan-data-intelligence","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-data-intelligence","Sansan Data Intelligenceリリースに寄せて",{"articleId":1621,"path":1622,"title":1623},"sansan-engineer-team-infra","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-engineer-team-infra","Sansan Engineer Team：インフラ戦略部",{"articleId":1625,"path":1626,"title":1627},"sansan-honne-15","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-honne-15","入社後のホンネ［技術本部 データ戦略部 Infrastructureグループ 渡邉 友］",{"articleId":1629,"path":1630,"title":1631},"sansan-interview-110","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-110","SIer出身者が活躍する理由とは。Sansanを牽引するプロダクト開発に挑み続ける",{"articleId":1633,"path":1634,"title":1635},"sansan-interview-126","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-126","AIと協働する開発組織、そして技術の深化。Sansan 新CTO笹川が語るビジョン",{"articleId":1637,"path":1638,"title":1639},"sansan-interview-127","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-127","Sansanの技術基盤を関西から築く。新設組織で未来を創る、エンジニアの挑戦",{"articleId":1641,"path":1642,"title":1643},"sansan-interview-130","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-130","Sansanの全社基盤を支えるPlatform Engineering Unitの挑戦",{"articleId":1645,"path":1646,"title":1647},"sansan-interview-40","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-40","膨大な量のデータを平然と処理する。Sansanのインフラのすごさが、そこに表れている。",{"articleId":1649,"path":1650,"title":1651},"sansan-oyaco","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-oyaco","仕事と子育ての両立を支援する制度「OYACO」",{"articleId":1653,"path":1654,"title":1655},"kjh-k1-h03-tekisei-shutoku","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Ftekisei-shutoku","課題Ⅰ 第３編② 適正な取得・要配慮個人情報・利用目的の通知",{"articleId":1657,"path":1658,"title":1659},"kjh-k1-h08-tokumei-kakou","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Ftokumei-kakou","課題Ⅰ 第８編 匿名加工情報に関する義務等（法43条〜46条）"]