ExamGecko
Search Search Login
Home Home / ISC / CISSP-ISSMP

ISC CISSP-ISSMP Practice Test - Questions Answers, Page 12

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following statements is related with the second law of OPSEC?
How many change control systems are there in project management?
Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event?
Which of the following statutes is enacted in the U.S., which prohibits creditors from collecting data from applicants, such as national origin, caste, religion etc?
You work as the project manager for Bluewell Inc. You are working on NGQQ Project for your company. You have completed the risk analysis processes for the risk events. You and the project team have created risk responses for most of the identified project risks. Which of the following risk response planning techniques will you use to shift the impact of a threat to a third party, together with the responses?
Which of the following liabilities is a third-party liability in which an individual may be responsible for an action by another party?
In which of the following contract types, the seller is reimbursed for all allowable costs for performing the contract work and receives a fixed fee payment which is calculated as a percentage of the initial estimated project costs?
How can you calculate the Annualized Loss Expectancy (ALE) that may occur due to a threat?
SIMULATION Fill in the blank with an appropriate phrase. _______is a branch of forensic science pertaining to legal evidence found in computers and digital storage media.
Which of the following architecturally related vulnerabilities is a hardware or software mechanism, which was installed to permit system maintenance and to bypass the system's security protections?

Question 111

Report
Export
Collapse

Which of the following security issues does the Bell-La Padula model focus on?

A.
Authentication
A.
Authentication
Answers
B.
Confidentiality
B.
Confidentiality
Answers
C.
Integrity
C.
Integrity
Answers
D.
Authorization
D.
Authorization
Answers
Suggested answer: B

Question 112

Report
Export
Collapse

Which of the following are the examples of administrative controls? Each correct answer represents a complete solution. Choose all that apply.

A.
Security awareness training
A.
Security awareness training
Answers
B.
Security policy
B.
Security policy
Answers
C.
Data Backup
C.
Data Backup
Answers
D.
Auditing
D.
Auditing
Answers
Suggested answer: A, B

Question 113

Report
Export
Collapse

Which of the following are the types of access controls? Each correct answer represents a complete solution. Choose three.

A.
Administrative
A.
Administrative
Answers
B.
Automatic
B.
Automatic
Answers
C.
Physical
C.
Physical
Answers
D.
Technical
D.
Technical
Answers
Suggested answer: A, C, D

Question 114

Report
Export
Collapse

Which of the following laws enacted in United States makes it illegal for an Internet Service Provider (ISP) to allow child pornography to exist on Web sites?

A.
Child Pornography Prevention Act (CPPA)
A.
Child Pornography Prevention Act (CPPA)
Answers
B.
USA PATRIOT Act
B.
USA PATRIOT Act
Answers
C.
Prosecutorial Remedies and Tools Against the Exploitation of Children Today Act (PROTECT Act)
C.
Prosecutorial Remedies and Tools Against the Exploitation of Children Today Act (PROTECT Act)
Answers
D.
Sexual Predators Act
D.
Sexual Predators Act
Answers
Suggested answer: D

Question 115

Report
Export
Collapse

Which of the following representatives of incident response team takes forensic backups of the systems that are the focus of the incident?

A.
Legal representative
A.
Legal representative
Answers
B.
Technical representative
B.
Technical representative
Answers
C.
Lead investigator
C.
Lead investigator
Answers
D.
Information security representative
D.
Information security representative
Answers
Suggested answer: B

Question 116

Report
Export
Collapse

A Web-based credit card company had collected financial and personal details of Mark before issuing him a credit card. The company has now provided Mark's financial and personal details to another company. Which of the following Internet laws has the credit card issuing company violated?

A.
Copyright law
A.
Copyright law
Answers
B.
Trademark law
B.
Trademark law
Answers
C.
Privacy law
C.
Privacy law
Answers
D.
Security law
D.
Security law
Answers
Suggested answer: C

Question 117

Report
Export
Collapse

You work as a Web Administrator for Perfect World Inc. The company is planning to host an E-commerce Web site. You are required to design a security plan for it. Client computers with different operating systems will access the Web server. How will you configure the Web server so that it is secure and only authenticated users are able to access it? Each correct answer represents a part of the solution. Choose two.

A.
Use encrypted authentication.
A.
Use encrypted authentication.
Answers
B.
Use the SSL protocol.
B.
Use the SSL protocol.
Answers
C.
Use the EAP protocol.
C.
Use the EAP protocol.
Answers
D.
Use Basic authentication.
D.
Use Basic authentication.
Answers
Suggested answer: A, B

Question 118

Report
Export
Collapse

Which of the following statements are true about security risks? Each correct answer represents a complete solution. Choose three.

A.
They can be analyzed and measured by the risk analysis process.
A.
They can be analyzed and measured by the risk analysis process.
Answers
B.
They can be removed completely by taking proper actions.
B.
They can be removed completely by taking proper actions.
Answers
C.
They can be mitigated by reviewing and taking responsible actions based on possible risks.
C.
They can be mitigated by reviewing and taking responsible actions based on possible risks.
Answers
D.
They are considered an indicator of threats coupled with vulnerability.
D.
They are considered an indicator of threats coupled with vulnerability.
Answers
Suggested answer: A, C, D

Question 119

Report
Export
Collapse

Which of the following methods for identifying appropriate BIA interviewees' includes examining the organizational chart of the enterprise to understand the functional positions?

A.
Organizational chart reviews
A.
Organizational chart reviews
Answers
B.
Executive management interviews
B.
Executive management interviews
Answers
C.
Overlaying system technology
C.
Overlaying system technology
Answers
D.
Organizational process models
D.
Organizational process models
Answers
Suggested answer: A

Question 120

Report
Export
Collapse

Which of the following BCP teams provides clerical support to the other teams and serves as a message center for the user-recovery site?

A.
Security team
A.
Security team
Answers
B.
Data preparation and records team
B.
Data preparation and records team
Answers
C.
Administrative support team
C.
Administrative support team
Answers
D.
Emergency operations team
D.
Emergency operations team
Answers
Suggested answer: C
Total 218 questions
Go to page: of 22
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms