ExamGecko
Login
Home / ISC / CISSP-ISSMP / List of questions
Ask Question

ISC CISSP-ISSMP Practice Test - Questions Answers, Page 4

List of questions

Question 31

Report Export Collapse

Peter works as a Computer Hacking Forensic Investigator. He has been called by an organization to conduct a seminar to give necessary information related to sexual harassment within the work place. Peter started with the definition and types of sexual harassment. He then wants to convey that it is important that records of the sexual harassment incidents should be maintained, which helps in further legal prosecution. Which of the following data should be recorded in this documentation? Each correct answer represents a complete solution. Choose all that apply.

Names of the victims
Names of the victims
Location of each incident
Location of each incident
Nature of harassment
Nature of harassment
Date and time of incident
Date and time of incident
Suggested answer: A, B, D
asked 18/09/2024
Tamas Szekely
38 questions

Question 32

Report Export Collapse

Which of the following types of evidence is considered as the best evidence?

A copy of the original document
A copy of the original document
Information gathered through the witness's senses
Information gathered through the witness's senses
The original document
The original document
A computer-generated record
A computer-generated record
Suggested answer: C
asked 18/09/2024
Pawel Szalek
41 questions

Question 33

Report Export Collapse

What are the purposes of audit records on an information system? Each correct answer represents a complete solution. Choose two.

Troubleshooting
Troubleshooting
Investigation
Investigation
Upgradation
Upgradation
Backup
Backup
Suggested answer: A, B
asked 18/09/2024
Unai M
45 questions

Question 34

Report Export Collapse

Which of the following refers to an information security document that is used in the United States Department of Defense (DoD) to describe and accredit networks and systems?

SSAA
SSAA
FITSAF
FITSAF
FIPS
FIPS
TCSEC
TCSEC
Suggested answer: A
asked 18/09/2024
shafinaaz hossenny
39 questions

Question 35

Report Export Collapse

Which of the following analysis provides a foundation for measuring investment of time, money and human resources required to achieve a particular outcome?

Vulnerability analysis
Vulnerability analysis
Cost-benefit analysis
Cost-benefit analysis
Gap analysis
Gap analysis
Requirement analysis
Requirement analysis
Suggested answer: C
asked 18/09/2024
m laven
32 questions

Question 36

Report Export Collapse

A contract cannot have provisions for which one of the following?

Subcontracting the work
Subcontracting the work
Penalties and fines for disclosure of intellectual rights
Penalties and fines for disclosure of intellectual rights
A deadline for the completion of the work
A deadline for the completion of the work
Illegal activities
Illegal activities
Suggested answer: D
asked 18/09/2024
Alexis Chacon
37 questions

Question 37

Report Export Collapse

Your company is covered under a liability insurance policy, which provides various liability coverage for information security risks, including any physical damage of assets, hacking attacks, etc. Which of the following risk management techniques is your company using?

Risk mitigation
Risk mitigation
Risk transfer
Risk transfer
Risk acceptance
Risk acceptance
Risk avoidance
Risk avoidance
Suggested answer: B
asked 18/09/2024
BERNDT HAMBOECK
33 questions

Question 38

Report Export Collapse

You work as a security manager for SoftTech Inc. You are conducting a security awareness campaign for your employees. One of the employees of your organization asks you the purpose of the security awareness, training and education program. What will be your answer?

It improves the possibility for career advancement of the IT staff.
It improves the possibility for career advancement of the IT staff.
It improves the security of vendor relations.
It improves the security of vendor relations.
It improves the performance of a company's intranet.
It improves the performance of a company's intranet.
It improves awareness of the need to protect system resources.
It improves awareness of the need to protect system resources.
Suggested answer: D
asked 18/09/2024
Lawrence Bargers
37 questions

Question 39

Report Export Collapse

You are responsible for network and information security at a metropolitan police station. The most important concern is that unauthorized parties are not able to access data. What is this called?

Availability
Availability
Encryption
Encryption
Integrity
Integrity
Confidentiality
Confidentiality
Suggested answer: D
asked 18/09/2024
Luis Maciel
47 questions

Question 40

Report Export Collapse

What component of the change management system is responsible for evaluating, testing, and documenting changes created to the project scope?

Scope Verification
Scope Verification
Project Management Information System
Project Management Information System
Integrated Change Control
Integrated Change Control
Configuration Management System
Configuration Management System
Suggested answer: D
asked 18/09/2024
Domenico D'Angelo
46 questions
Total 218 questions
Go to page: of 22
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following characteristics are described by the DIAP Information Readiness Assessment function? Each correct answer represents a complete solution. Choose all that apply.
Which of the following statements are true about security risks? Each correct answer represents a complete solution. Choose three.
Change Management is used to ensure that standardized methods and procedures are used for efficient handling of all changes. Who decides the category of a change?
Which of the following statements is related with the second law of OPSEC?
SIMULATION Fill in the blank with the appropriate phrase. ____________ is the ability to record and report on the configuration baselines associated with each configuration item at any moment of time.
Which of the following access control models uses a predefined set of access privileges for an object of a system?
How can you calculate the Annualized Loss Expectancy (ALE) that may occur due to a threat?
SIMULATION Fill in the blank with an appropriate phrase. _______is a branch of forensic science pertaining to legal evidence found in computers and digital storage media.
Which of the following recovery plans includes specific strategies and actions to deal with specific variances to assumptions resulting in a particular security problem, emergency, or state of affairs?
Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event?