ExamGecko
Login
Home / ISC / CISSP / List of questions
Ask Question

ISC CISSP Practice Test - Questions Answers, Page 24

Add to Whishlist

List of questions

Question 231

Report Export Collapse

Which of the following is the MOST difficult to enforce when using cloud computing?

Data access
Data access
Data backup
Data backup
Data recovery
Data recovery
Data disposal
Data disposal
Suggested answer: D
asked 18/09/2024
Aparecido Lemos
40 questions

Question 232

Report Export Collapse

Which of the following is the BEST way to determine if a particular system is able to identify malicious software without executing it?

Testing with a Botnet
Testing with a Botnet
Testing with an EICAR file
Testing with an EICAR file
Executing a binary shellcode
Executing a binary shellcode
Run multiple antivirus programs
Run multiple antivirus programs
Suggested answer: B
asked 18/09/2024
Giulia Alberghi
47 questions

Question 233

Report Export Collapse

Which of the following is a BEST practice when traveling internationally with laptops containing Personally Identifiable Information (PII)?

Use a thumb drive to transfer information from a foreign computer.
Use a thumb drive to transfer information from a foreign computer.
Do not take unnecessary information, including sensitive information.
Do not take unnecessary information, including sensitive information.
Connect the laptop only to well-known networks like the hotel or public Internet cafes.
Connect the laptop only to well-known networks like the hotel or public Internet cafes.
Request international points of contact help scan the laptop on arrival to ensure it is protected.
Request international points of contact help scan the laptop on arrival to ensure it is protected.
Suggested answer: B
asked 18/09/2024
Joseph Varghese
44 questions

Question 234

Report Export Collapse

Which of the following assures that rules are followed in an identity management architecture?

Policy database
Policy database
Digital signature
Digital signature
Policy decision point
Policy decision point
Policy enforcement point
Policy enforcement point
Suggested answer: D
asked 18/09/2024
Wislon Pereira
41 questions

Question 235

Report Export Collapse

Which of the following violates identity and access management best practices?

User accounts
User accounts
System accounts
System accounts
Generic accounts
Generic accounts
Privileged accounts
Privileged accounts
Suggested answer: C
asked 18/09/2024
JP Pelovello
54 questions

Question 236

Report Export Collapse

When dealing with compliance with the Payment Card Industry-Data Security Standard (PCI-DSS), an organization that shares card holder information with a service provider MUST do which of the following?

Perform a service provider PCI-DSS assessment on a yearly basis.
Perform a service provider PCI-DSS assessment on a yearly basis.
Validate the service provider's PCI-DSS compliance status on a regular basis.
Validate the service provider's PCI-DSS compliance status on a regular basis.
Validate that the service providers security policies are in alignment with those of the organization.
Validate that the service providers security policies are in alignment with those of the organization.
Ensure that the service provider updates and tests its Disaster Recovery Plan (DRP) on a yearly basis.
Ensure that the service provider updates and tests its Disaster Recovery Plan (DRP) on a yearly basis.
Suggested answer: B
asked 18/09/2024
Kefash White
45 questions

Question 237

Report Export Collapse

What is the MAIN feature that onion routing networks offer?

Non-repudiation
Non-repudiation
Traceability
Traceability
Anonymity
Anonymity
Resilience
Resilience
Suggested answer: C
asked 18/09/2024
FOTIS FOURLIAS
49 questions

Question 238

Report Export Collapse

Which of the following MUST system and database administrators be aware of and apply when configuring systems used for storing personal employee data?

Secondary use of the data by business users
Secondary use of the data by business users
The organization's security policies and standards
The organization's security policies and standards
The business purpose for which the data is to be used
The business purpose for which the data is to be used
The overall protection of corporate resources and data
The overall protection of corporate resources and data
Suggested answer: B
asked 18/09/2024
Robert Andrade
56 questions

Question 239

Report Export Collapse

Which of the following methods provides the MOST protection for user credentials?

Forms-based authentication
Forms-based authentication
Digest authentication
Digest authentication
Basic authentication
Basic authentication
Self-registration
Self-registration
Suggested answer: B
asked 18/09/2024
Fahad Mustafa
50 questions

Question 240

Report Export Collapse

Which of the following MOST influences the design of the organization's electronic monitoring policies?

Workplace privacy laws
Workplace privacy laws
Level of organizational trust
Level of organizational trust
Results of background checks
Results of background checks
Business ethical considerations
Business ethical considerations
Suggested answer: A
asked 18/09/2024
Priyantha Perea
48 questions
Total 1.482 questions
Go to page: of 149
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which Open Systems Interconnection (OSI) layer(s) BEST corresponds to the network access layer in the Transmission Control Protocol/Internet Protocol (TCP/IP) model?
All of the following items should be included in a Business Impact Analysis (BIA) questionnaire EXCEPT questions that
An organization is preparing to achieve General Data Protection Regulation (GDPR) compliance. The Chief Information Security Officer (CISO) is reviewing data protection methods. Which of the following is the BEST data protection method?
Which one of the following would cause an immediate review and possible change to the security policies of an organization?
Which of the following are all elements of a disaster recovery plan (DRP)?
What is the MAIN reason for testing a Disaster Recovery Plan (DRP)?
Which of the following BEST describes the objectives of the Business Impact Analysis (BIA)?
Which of the following would BEST support effective testing of patch compatibility when patches are applied to an organization's systems?
Which part of an operating system (OS) is responsible for providing security interfaces among the hardware, OS, and other parts of the computing system?
In what phase of the System Development Life Cycle (SDLC) should security training for the development team begin?