ISC CISSP Practice Test - Questions Answers, Page 79

Which open standard could l large corporation deploy for authorization services for single sign-on (SSO) use across multiple internal and external application?

Which of the following statements is TRUE regarding equivalence class testing?

A large corporation is looking for a solution to automate access based on where the request is coming from, who the user is, what device they are connecting with, and what and time of day they are attempting this access. What type of solution would suit their needs?

Which of the following techniques is MOST useful when dealing with Advanced persistent Threat (APT) intrusions on live virtualized environments?

Which of the following MUST an organization do to effectively communicate is security strategy to all affected parties?

When using Security Assertion markup language (SAML), it is assumed that the principal subject

A client has reviewed a vulnerability assessment report and has stated it is inaccurate. The client states that the vulnerabilities listed are not valid because the host's Operating system (OS) was not properly detected.

Where in the vulnerability assessment process did the error MOST likely occur?

Which of the below strategies would MOST comprehensively address the risk of malicious insiders leaking sensitive information?

What is the FIRST step required in establishing a records retention program?