ExamGecko
Login
Home / ISC / CISSP-ISSEP / List of questions
Ask Question

ISC CISSP-ISSEP Practice Test - Questions Answers, Page 9

List of questions

Question 81

Report Export Collapse

Which of the following cooperative programs carried out by NIST encourages performance excellence among U.S. manufacturers, service companies, educational institutions, and healthcare providers

Manufacturing Extension Partnership
Manufacturing Extension Partnership
Baldrige National Quality Program
Baldrige National Quality Program
Advanced Technology Program
Advanced Technology Program
NIST Laboratories
NIST Laboratories
Suggested answer: B
asked 18/09/2024
Francesco Pignalosa
43 questions

Question 82

Report Export Collapse

Your project is an agricultural-based project that deals with plant irrigation systems. You have discovered a byproduct in your project that your organization could use to make a profit. If your organization seizes this opportunity it would be an example of what risk response

Enhancing
Enhancing
Positive
Positive
Opportunistic
Opportunistic
Exploiting
Exploiting
Suggested answer: D
asked 18/09/2024
NEURONES TECHNOLOGIES
51 questions

Question 83

Report Export Collapse

Which of the following processes provides guidance to the system designers and form the basis of major events in the acquisition phases, such as testing the products for system integration

Operational scenarios
Operational scenarios
Functional requirements
Functional requirements
Human factors
Human factors
Performance requirements
Performance requirements
Suggested answer: A
asked 18/09/2024
Daniel Hernandez Villar
38 questions

Question 84

Report Export Collapse

The National Information Assurance Certification and Accreditation Process (NIACAP) is the minimum standard process for the certification and accreditation of computer and telecommunications systems that handle U.S. national security information. Which of the following participants are required in a NIACAP security assessment? Each correct answer represents a part of the solution. Choose all that apply.

Information Assurance Manager
Information Assurance Manager
Designated Approving Authority
Designated Approving Authority
Certification agent
Certification agent
IS program manager
IS program manager
User representative
User representative
Suggested answer: B, C, D, E
asked 18/09/2024
Marcin Weglarski
39 questions

Question 85

Report Export Collapse

Which of the following is NOT used in the practice of Information Assurance (IA) to define assurance requirements

Classic information security model
Classic information security model
Five Pillars model
Five Pillars model
Communications Management Plan
Communications Management Plan
Parkerian Hexad
Parkerian Hexad
Suggested answer: C
asked 18/09/2024
Cynan Jones
43 questions

Question 86

Report Export Collapse

Which of the following NIST documents describes that minimizing negative impact on an organization and a need for sound basis in decision making are the fundamental reasons organizations implement a risk management process for their IT systems

NIST SP 800-37
NIST SP 800-37
NIST SP 800-30
NIST SP 800-30
NIST SP 800-53
NIST SP 800-53
NIST SP 800-60
NIST SP 800-60
Suggested answer: B
asked 18/09/2024
Fiston LOMATE
50 questions

Question 87

Report Export Collapse

Which of the following roles is also known as the accreditor

Data owner
Data owner
Chief Information Officer
Chief Information Officer
Chief Risk Officer
Chief Risk Officer
Designated Approving Authority
Designated Approving Authority
Suggested answer: D
asked 18/09/2024
Alper Atar
48 questions

Question 88

Report Export Collapse

In which of the following DIACAP phases is residual risk analyzed

Phase 2
Phase 2
Phase 3
Phase 3
Phase 5
Phase 5
Phase 1
Phase 1
Phase 4
Phase 4
Suggested answer: E
asked 18/09/2024
Chan Park
43 questions

Question 89

Report Export Collapse

Which of the following CNSS policies describes the national policy on controlled access protection

NSTISSP No. 101
NSTISSP No. 101
NSTISSP No. 200
NSTISSP No. 200
NCSC No. 5
NCSC No. 5
CNSSP No. 14
CNSSP No. 14
Suggested answer: B
asked 18/09/2024
Jebaz Norton
50 questions

Question 90

Report Export Collapse

Which of the following agencies is responsible for funding the development of many technologies such as computer networking, as well as NLS

DARPA
DARPA
DTIC
DTIC
DISA
DISA
DIAP
DIAP
Suggested answer: A
asked 18/09/2024
Ishan Patel
35 questions
Total 214 questions
Go to page: of 22
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following Registration Tasks notifies the DAA, Certifier, and User Representative that the system requires C&A Support
You have been tasked with finding an encryption methodology that will encrypt most types of email attachments. The requirements are that your solution must use the RSA algorithm. Which of the following is your best choice
DoD 8500.2 establishes IA controls for information systems according to the Mission Assurance Categories (MAC) and confidentiality levels. Which of the following MAC levels requires basic integrity and availability
Numerous information security standards promote good security practices and define frameworks or systems to structure the analysis and design for managing information security controls. Which of the following are the U.S. Federal Government information security standards Each correct answer represents a complete solution. Choose all that apply.
The Concept of Operations (CONOPS) is a document describing the characteristics of a proposed system from the viewpoint of an individual who will use that system. Which of the following points are included in CONOPS Each correct answer represents a complete solution. Choose all that apply.
A security policy is an overall general statement produced by senior management that dictates what role security plays within the organization. What are the different types of policies Each correct answer represents a complete solution. Choose all that apply.
Which of the following statements define the role of the ISSEP during the development of the detailed security design, as mentioned in the IATF document Each correct answer represents a complete solution. Choose all that apply.
Which of the following documents is described in the statement below It is developed along with all processes of the risk management. It contains the results of the qualitative risk analysis, quantitative risk analysis, and risk response planning.
Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event
What NIACAP certification levels are recommended by the certifier Each correct answer represents a complete solution. Choose all that apply.