ExamGecko
Search Search Login
Home Home / ISC / CISSP

ISC CISSP Practice Test - Questions Answers, Page 5

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following are all elements of a disaster recovery plan (DRP)?
All of the following items should be included in a Business Impact Analysis (BIA) questionnaire EXCEPT questions that
Which of the following would BEST support effective testing of patch compatibility when patches are applied to an organization's systems?
Which part of an operating system (OS) is responsible for providing security interfaces among the hardware, OS, and other parts of the computing system?
In what phase of the System Development Life Cycle (SDLC) should security training for the development team begin?
What balance MUST be considered when web application developers determine how informative application error messages should be constructed?
Backup information that is critical to the organization is identified through a
With what frequency should monitoring of a control occur when implementing Information Security Continuous Monitoring (ISCM) solutions?
An organization is preparing to achieve General Data Protection Regulation (GDPR) compliance. The Chief Information Security Officer (CISO) is reviewing data protection methods. Which of the following is the BEST data protection method?
Data remanence refers to which of the following?

Question 41

Report
Export
Collapse

Which of the following is a PRIMARY benefit of using a formalized security testing report format and structure?

A.
Executive audiences will understand the outcomes of testing and most appropriate next steps for corrective actions to be taken
A.
Executive audiences will understand the outcomes of testing and most appropriate next steps for corrective actions to be taken
Answers
B.
Technical teams will understand the testing objectives, testing strategies applied, and business risk associated with each vulnerability
B.
Technical teams will understand the testing objectives, testing strategies applied, and business risk associated with each vulnerability
Answers
C.
Management teams will understand the testing objectives and reputational risk to the organization
C.
Management teams will understand the testing objectives and reputational risk to the organization
Answers
D.
Technical and management teams will better understand the testing objectives, results of each test phase, and potential impact levels
D.
Technical and management teams will better understand the testing objectives, results of each test phase, and potential impact levels
Answers
Suggested answer: D

Question 42

Report
Export
Collapse

Which of the following could cause a Denial of Service (DoS) against an authentication system?

A.
Encryption of audit logs
A.
Encryption of audit logs
Answers
B.
No archiving of audit logs
B.
No archiving of audit logs
Answers
C.
Hashing of audit logs
C.
Hashing of audit logs
Answers
D.
Remote access audit logs
D.
Remote access audit logs
Answers
Suggested answer: D

Question 43

Report
Export
Collapse

An organization is found lacking the ability to properly establish performance indicators for its Web hosting solution during an audit. What would be the MOST probable cause?

A.
Absence of a Business Intelligence (BI) solution
A.
Absence of a Business Intelligence (BI) solution
Answers
B.
Inadequate cost modeling
B.
Inadequate cost modeling
Answers
C.
Improper deployment of the Service-Oriented Architecture (SOA)
C.
Improper deployment of the Service-Oriented Architecture (SOA)
Answers
D.
Insufficient Service Level Agreement (SLA)
D.
Insufficient Service Level Agreement (SLA)
Answers
Suggested answer: D

Question 44

Report
Export
Collapse

Which of the following types of business continuity tests includes assessment of resilience to internal and external risks without endangering live operations?

A.
Walkthrough
A.
Walkthrough
Answers
B.
Simulation
B.
Simulation
Answers
C.
Parallel
C.
Parallel
Answers
D.
White box
D.
White box
Answers
Suggested answer: C

Question 45

Report
Export
Collapse

What is the PRIMARY reason for implementing change management?

A.
Certify and approve releases to the environment
A.
Certify and approve releases to the environment
Answers
B.
Provide version rollbacks for system changes
B.
Provide version rollbacks for system changes
Answers
C.
Ensure that all applications are approved
C.
Ensure that all applications are approved
Answers
D.
Ensure accountability for changes to the environment
D.
Ensure accountability for changes to the environment
Answers
Suggested answer: D

Question 46

Report
Export
Collapse

Which of the following is a PRIMARY advantage of using a third-party identity service?

A.
Consolidation of multiple providers
A.
Consolidation of multiple providers
Answers
B.
Directory synchronization
B.
Directory synchronization
Answers
C.
Web based logon
C.
Web based logon
Answers
D.
Automated account management
D.
Automated account management
Answers
Suggested answer: D

Question 47

Report
Export
Collapse

With what frequency should monitoring of a control occur when implementing Information Security Continuous Monitoring (ISCM) solutions?

A.
Continuously without exception for all security controls
A.
Continuously without exception for all security controls
Answers
B.
Before and after each change of the control
B.
Before and after each change of the control
Answers
C.
At a rate concurrent with the volatility of the security control
C.
At a rate concurrent with the volatility of the security control
Answers
D.
Only during system implementation and decommissioning
D.
Only during system implementation and decommissioning
Answers
Suggested answer: B

Question 48

Report
Export
Collapse

What should be the FIRST action to protect the chain of evidence when a desktop computer is involved?

A.
Take the computer to a forensic lab
A.
Take the computer to a forensic lab
Answers
B.
Make a copy of the hard drive
B.
Make a copy of the hard drive
Answers
C.
Start documenting
C.
Start documenting
Answers
D.
Turn off the computer
D.
Turn off the computer
Answers
Suggested answer: C

Question 49

Report
Export
Collapse

What is the MOST important step during forensic analysis when trying to learn the purpose of an unknown application?

A.
Disable all unnecessary services
A.
Disable all unnecessary services
Answers
B.
Ensure chain of custody
B.
Ensure chain of custody
Answers
C.
Prepare another backup of the system
C.
Prepare another backup of the system
Answers
D.
Isolate the system from the network
D.
Isolate the system from the network
Answers
Suggested answer: D

Question 50

Report
Export
Collapse

A Business Continuity Plan/Disaster Recovery Plan (BCP/DRP) will provide which of the following?

A.
Guaranteed recovery of all business functions
A.
Guaranteed recovery of all business functions
Answers
B.
Minimization of the need decision making during a crisis
B.
Minimization of the need decision making during a crisis
Answers
C.
Insurance against litigation following a disaster
C.
Insurance against litigation following a disaster
Answers
D.
Protection from loss of organization resources
D.
Protection from loss of organization resources
Answers
Suggested answer: D
Total 1.482 questions
Go to page: of 149
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms