# Professional Ethics Scenarios One-sentence definition: Applying ethics codes to real dilemmas where legal, business, and security pressures conflict. ## Key Facts - Prioritize public good and legality over employer preference. - Manage conflicts of interest; disclose and recuse if needed. - Avoid unauthorized testing/access, even if technically feasible. - Protect confidentiality; only disclose as required and properly. - Report vulnerabilities responsibly; avoid causing harm. - **Verify:** check official (ISC)² CBK and current exam outline. ## Exam Relevance - Choose the most ethical action among plausible options. **Mnemonic:** “**PALS**” → Public, Act lawfully, Loyal but safe, Serve profession. ## Mini Scenario Q: Boss asks to spy on competitor via phishing—response? A: Refuse; escalate; follow code of ethics and law. ## Revision Checklist - Name two conflict examples and resolutions. - List three unethical acts to avoid. - State escalation path for unethical requests. ## Related [(ISC)² Code of Ethics]([[Ethics: (ISC)² Code of Ethics]]) · [[Ethics: IAB RFC 1087 and ACM Code]] · [[Compliance and Regulatory Concepts]] · [[Computer Crime Categories and Laws]] · [[Security Governance]] · [[Domain 1 - Index]]