ExamGecko
Search Search Login
Home Home / ISC / CISSP

ISC CISSP Practice Test - Questions Answers

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following are all elements of a disaster recovery plan (DRP)?
All of the following items should be included in a Business Impact Analysis (BIA) questionnaire EXCEPT questions that
Which of the following would BEST support effective testing of patch compatibility when patches are applied to an organization's systems?
In what phase of the System Development Life Cycle (SDLC) should security training for the development team begin?
Which part of an operating system (OS) is responsible for providing security interfaces among the hardware, OS, and other parts of the computing system?
What balance MUST be considered when web application developers determine how informative application error messages should be constructed?
Backup information that is critical to the organization is identified through a
An organization is preparing to achieve General Data Protection Regulation (GDPR) compliance. The Chief Information Security Officer (CISO) is reviewing data protection methods. Which of the following is the BEST data protection method?
Data remanence refers to which of the following?
With what frequency should monitoring of a control occur when implementing Information Security Continuous Monitoring (ISCM) solutions?

Question 1

Report
Export
Collapse

All of the following items should be included in a Business Impact Analysis (BIA) questionnaire EXCEPT questions that

A.
determine the risk of a business interruption occurring
A.
determine the risk of a business interruption occurring
Most voted
Answers (1)
Most voted
B.
determine the technological dependence of the business processes
B.
determine the technological dependence of the business processes
Answers
C.
Identify the operational impacts of a business interruption
C.
Identify the operational impacts of a business interruption
Answers
D.
Identify the financial impacts of a business interruption
D.
Identify the financial impacts of a business interruption
Answers
Suggested answer: B

Question 2

Report
Export
Collapse

Which of the following actions will reduce risk to a laptop before traveling to a high risk area?

A.
Examine the device for physical tampering
A.
Examine the device for physical tampering
Answers
B.
Implement more stringent baseline configurations
B.
Implement more stringent baseline configurations
Answers
C.
Purge or re-image the hard disk drive
C.
Purge or re-image the hard disk drive
Answers
D.
Change access codes
D.
Change access codes
Answers
Suggested answer: D

Question 3

Report
Export
Collapse

Which of the following represents the GREATEST risk to data confidentiality?

A.
Network redundancies are not implemented
A.
Network redundancies are not implemented
Answers
B.
Security awareness training is not completed
B.
Security awareness training is not completed
Answers
C.
Backup tapes are generated unencrypted
C.
Backup tapes are generated unencrypted
Answers
D.
Users have administrative privileges
D.
Users have administrative privileges
Answers
Suggested answer: C

Question 4

Report
Export
Collapse

What is the MOST important consideration from a data security perspective when an organization plans to relocate?

A.
Ensure the fire prevention and detection systems are sufficient to protect personnel
A.
Ensure the fire prevention and detection systems are sufficient to protect personnel
Answers
B.
Review the architectural plans to determine how many emergency exits are present
B.
Review the architectural plans to determine how many emergency exits are present
Answers
C.
Conduct a gap analysis of a new facilities against existing security requirements
C.
Conduct a gap analysis of a new facilities against existing security requirements
Answers
D.
Revise the Disaster Recovery and Business Continuity (DR/BC) plan
D.
Revise the Disaster Recovery and Business Continuity (DR/BC) plan
Answers
Suggested answer: C

Question 5

Report
Export
Collapse

A company whose Information Technology (IT) services are being delivered from a Tier 4 data center, is preparing a companywide Business Continuity Planning (BCP). Which of the following failures should the IT manager be concerned with?

A.
Application
A.
Application
Answers
B.
Storage
B.
Storage
Answers
C.
Power
C.
Power
Answers
D.
Network
D.
Network
Answers
Suggested answer: C

Question 6

Report
Export
Collapse

When assessing an organization's security policy according to standards established by the International Organization for Standardization (ISO) 27001 and 27002, when can management responsibilities be defined?

A.
Only when assets are clearly defined
A.
Only when assets are clearly defined
Answers
B.
Only when standards are defined
B.
Only when standards are defined
Answers
C.
Only when controls are put in place
C.
Only when controls are put in place
Answers
D.
Only procedures are defined
D.
Only procedures are defined
Answers
Suggested answer: A

Question 7

Report
Export
Collapse

Which of the following types of technologies would be the MOST cost-effective method to provide a reactive control for protecting personnel in public areas?

A.
Install mantraps at the building entrances
A.
Install mantraps at the building entrances
Answers
B.
Enclose the personnel entry area with polycarbonate plastic
B.
Enclose the personnel entry area with polycarbonate plastic
Answers
C.
Supply a duress alarm for personnel exposed to the public
C.
Supply a duress alarm for personnel exposed to the public
Answers
D.
Hire a guard to protect the public area
D.
Hire a guard to protect the public area
Answers
Suggested answer: D

Question 8

Report
Export
Collapse

An important principle of defense in depth is that achieving information security requires a balanced focus on which PRIMARY elements?

A.
Development, testing, and deployment
A.
Development, testing, and deployment
Answers
B.
Prevention, detection, and remediation
B.
Prevention, detection, and remediation
Answers
C.
People, technology, and operations
C.
People, technology, and operations
Answers
D.
Certification, accreditation, and monitoring
D.
Certification, accreditation, and monitoring
Answers
Suggested answer: C

Question 9

Report
Export
Collapse

Intellectual property rights are PRIMARY concerned with which of the following?

A.
Owner's ability to realize financial gain
A.
Owner's ability to realize financial gain
Answers
B.
Owner's ability to maintain copyright
B.
Owner's ability to maintain copyright
Answers
C.
Right of the owner to enjoy their creation
C.
Right of the owner to enjoy their creation
Answers
D.
Right of the owner to control delivery method
D.
Right of the owner to control delivery method
Answers
Suggested answer: C

Question 10

Report
Export
Collapse

Which of the following is MOST important when assigning ownership of an asset to a department?

A.
The department should report to the business owner
A.
The department should report to the business owner
Answers
B.
Ownership of the asset should be periodically reviewed
B.
Ownership of the asset should be periodically reviewed
Answers
C.
Individual accountability should be ensured
C.
Individual accountability should be ensured
Answers
D.
All members should be trained on their responsibilities
D.
All members should be trained on their responsibilities
Answers
Suggested answer: D
Total 1.482 questions
Go to page: of 149
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms