ExamGecko
Login
Home / ISC / CISSP-ISSEP / List of questions
Ask Question

ISC CISSP-ISSEP Practice Test - Questions Answers, Page 6

Add to Whishlist

List of questions

Question 51

Report Export Collapse

Which of the following memorandums reminds the Federal agencies that it is required by law and policy to establish clear privacy policies for Web activities and to comply with those policies

OMB M-01-08
OMB M-01-08
OMB M-03-19
OMB M-03-19
OMB M-00-07
OMB M-00-07
OMB M-00-13
OMB M-00-13
Suggested answer: D
asked 18/09/2024
Jess Kendrick Gamboa
39 questions

Question 52

Report Export Collapse

Lisa is the project manager of the SQL project for her company. She has completed the risk response planning with her project team and is now ready to update the risk register to reflect the risk response. Which of the following statements best describes the level of detail Lisa should include with the risk responses she has created

The level of detail must define exactly the risk response for each identified risk.
The level of detail must define exactly the risk response for each identified risk.
The level of detail is set of project risk governance.
The level of detail is set of project risk governance.
The level of detail is set by historical information.
The level of detail is set by historical information.
The level of detail should correspond with the priority ranking.
The level of detail should correspond with the priority ranking.
Suggested answer: D
asked 18/09/2024
Abbas Jabbari
48 questions

Question 53

Report Export Collapse

You work as a security manager for BlueWell Inc. You are going through the NIST SP 800-37 C&A methodology, which is based on four well defined phases. In which of the following phases of NIST SP 800-37 C&A methodology does the security categorization occur

Continuous Monitoring
Continuous Monitoring
Initiation
Initiation
Security Certification
Security Certification
Security Accreditation
Security Accreditation
Suggested answer: B
asked 18/09/2024
Farshin Golpad
41 questions

Question 54

Report Export Collapse

You work as a systems engineer for BlueWell Inc. You are working on translating system requirements into detailed function criteria. Which of the following diagrams will help you to show all of the function requirements and their groupings in one diagram

Activity diagram
Activity diagram
Functional flow block diagram (FFBD)
Functional flow block diagram (FFBD)
Functional hierarchy diagram
Functional hierarchy diagram
Timeline analysis diagram
Timeline analysis diagram
Suggested answer: C
asked 18/09/2024
Charles Brono
50 questions

Question 55

Report Export Collapse

Which of the following phases of DITSCAP includes the activities that are necessary for the continuing operation of an accredited IT system in its computing environment and for addressing the changing threats that a system faces throughout its life cycle

Phase 1, Definition
Phase 1, Definition
Phase 3, Validation
Phase 3, Validation
Phase 4, Post Accreditation Phase
Phase 4, Post Accreditation Phase
Phase 2, Verification
Phase 2, Verification
Suggested answer: C
asked 18/09/2024
Sundarrajan Mugunthan
38 questions

Question 56

Report Export Collapse

Which of the following Security Control Assessment Tasks evaluates the operational, technical, and the management security controls of the information system using the techniques and measures selected or developed

Security Control Assessment Task 3
Security Control Assessment Task 3
Security Control Assessment Task 1
Security Control Assessment Task 1
Security Control Assessment Task 4
Security Control Assessment Task 4
Security Control Assessment Task 2
Security Control Assessment Task 2
Suggested answer: A
asked 18/09/2024
Calvin Bolico
35 questions

Question 57

Report Export Collapse

The Phase 2 of DITSCAP C&A is known as Verification. The goal of this phase is to obtain a fully integrated system for certification testing and accreditation.

What are the process activities of this phase Each correct answer represents a complete solution. Choose all that apply.

Assessment of the Analysis Results
Assessment of the Analysis Results
Certification analysis
Certification analysis
Registration
Registration
System development
System development
Configuring refinement of the SSAA
Configuring refinement of the SSAA
Suggested answer: A, B, D, E
asked 18/09/2024
bert toger
44 questions

Question 58

Report Export Collapse

You work as a Network Administrator for PassGuide Inc. You need to secure web services of your company in order to have secure transactions. Which of the following will you recommend for providing security

HTTP
HTTP
VPN
VPN
SMIME
SMIME
SSL
SSL
Suggested answer: D
asked 18/09/2024
Eduardo Rives
43 questions

Question 59

Report Export Collapse

Which of the following processes illustrate the study of a technical nature of interest to focused audience, and consist of interim or final reports on work made by

NIST for external sponsors, including government and non-government sponsors

Federal Information Processing Standards (FIPS)
Federal Information Processing Standards (FIPS)
Special Publication (SP)
Special Publication (SP)
NISTIRs (Internal Reports)
NISTIRs (Internal Reports)
DIACAP
DIACAP
Suggested answer: C
asked 18/09/2024
Sander Verheijen
39 questions

Question 60

Report Export Collapse

SIMULATION Fill in the blank with an appropriate phrase. __________ seeks to improve the quality of process outputs by identifying and removing the causes of defects and variability in manufacturing and business processes.

Six Sigma
Six Sigma
Suggested answer: A
asked 18/09/2024
Adam Vce
42 questions
Total 214 questions
Go to page: of 22
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following Registration Tasks notifies the DAA, Certifier, and User Representative that the system requires C&A Support
You have been tasked with finding an encryption methodology that will encrypt most types of email attachments. The requirements are that your solution must use the RSA algorithm. Which of the following is your best choice
DoD 8500.2 establishes IA controls for information systems according to the Mission Assurance Categories (MAC) and confidentiality levels. Which of the following MAC levels requires basic integrity and availability
Numerous information security standards promote good security practices and define frameworks or systems to structure the analysis and design for managing information security controls. Which of the following are the U.S. Federal Government information security standards Each correct answer represents a complete solution. Choose all that apply.
The Concept of Operations (CONOPS) is a document describing the characteristics of a proposed system from the viewpoint of an individual who will use that system. Which of the following points are included in CONOPS Each correct answer represents a complete solution. Choose all that apply.
A security policy is an overall general statement produced by senior management that dictates what role security plays within the organization. What are the different types of policies Each correct answer represents a complete solution. Choose all that apply.
Which of the following statements define the role of the ISSEP during the development of the detailed security design, as mentioned in the IATF document Each correct answer represents a complete solution. Choose all that apply.
Which of the following documents is described in the statement below It is developed along with all processes of the risk management. It contains the results of the qualitative risk analysis, quantitative risk analysis, and risk response planning.
Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event
What NIACAP certification levels are recommended by the certifier Each correct answer represents a complete solution. Choose all that apply.