ExamGecko
Search Search Login
Home Home / ISC / CISSP-ISSMP

ISC CISSP-ISSMP Practice Test - Questions Answers, Page 5

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

How many change control systems are there in project management?
Which of the following statements is related with the second law of OPSEC?
Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event?
Which of the following statutes is enacted in the U.S., which prohibits creditors from collecting data from applicants, such as national origin, caste, religion etc?
Which of the following liabilities is a third-party liability in which an individual may be responsible for an action by another party?
Which of the following architecturally related vulnerabilities is a hardware or software mechanism, which was installed to permit system maintenance and to bypass the system's security protections?
You work as the project manager for Bluewell Inc. You are working on NGQQ Project for your company. You have completed the risk analysis processes for the risk events. You and the project team have created risk responses for most of the identified project risks. Which of the following risk response planning techniques will you use to shift the impact of a threat to a third party, together with the responses?
In which of the following contract types, the seller is reimbursed for all allowable costs for performing the contract work and receives a fixed fee payment which is calculated as a percentage of the initial estimated project costs?
How can you calculate the Annualized Loss Expectancy (ALE) that may occur due to a threat?
SIMULATION Fill in the blank with the appropriate phrase. ____________ is the ability to record and report on the configuration baselines associated with each configuration item at any moment of time.

Question 41

Report
Export
Collapse

Electronic communication technology refers to technology devices, such as computers and cell phones, used to facilitate communication. Which of the following is/are a type of electronic communication? Each correct answer represents a complete solution. Choose all that apply.

A.
Internet telephony
A.
Internet telephony
Answers
B.
Instant messaging
B.
Instant messaging
Answers
C.
Electronic mail
C.
Electronic mail
Answers
D.
Post-it note
D.
Post-it note
Answers
E.
Blogs
E.
Blogs
Answers
F.
Internet teleconferencing
F.
Internet teleconferencing
Answers
Suggested answer: A, B, C, E, F

Question 42

Report
Export
Collapse

You are the project manager of the HJK project for your organization. You and the project team have created risk responses for many of the risk events in the project. A teaming agreement is an example of what risk response?

A.
Mitigation
A.
Mitigation
Answers
B.
Sharing
B.
Sharing
Answers
C.
Acceptance
C.
Acceptance
Answers
D.
Transference
D.
Transference
Answers
Suggested answer: B

Question 43

Report
Export
Collapse

Which of the following acts is a specialized privacy bill that affects any educational institution to accept any form of funding from the federal government?

A.
HIPAA
A.
HIPAA
Answers
B.
COPPA
B.
COPPA
Answers
C.
FERPA
C.
FERPA
Answers
D.
GLBA
D.
GLBA
Answers
Suggested answer: C

Question 44

Report
Export
Collapse

Which of the following steps is the initial step in developing an information security strategy?

A.
Perform a technical vulnerabilities assessment.
A.
Perform a technical vulnerabilities assessment.
Answers
B.
Assess the current levels of security awareness.
B.
Assess the current levels of security awareness.
Answers
C.
Perform a business impact analysis.
C.
Perform a business impact analysis.
Answers
D.
Analyze the current business strategy.
D.
Analyze the current business strategy.
Answers
Suggested answer: D

Question 45

Report
Export
Collapse

Which of the following statements about the integrity concept of information security management are true? Each correct answer represents a complete solution.

Choose three.

A.
It ensures that unauthorized modifications are not made to data by authorized personnel or processes.
A.
It ensures that unauthorized modifications are not made to data by authorized personnel or processes.
Answers
B.
It determines the actions and behaviors of a single individual within a system
B.
It determines the actions and behaviors of a single individual within a system
Answers
C.
It ensures that modifications are not made to data by unauthorized personnel or processes.
C.
It ensures that modifications are not made to data by unauthorized personnel or processes.
Answers
D.
It ensures that internal information is consistent among all subentities and also consistent with the real-world, external situation.
D.
It ensures that internal information is consistent among all subentities and also consistent with the real-world, external situation.
Answers
Suggested answer: A, C, D

Question 46

Report
Export
Collapse

Which of the following contract types is described in the statement below? "This contract type provides no incentive for the contractor to control costs and hence is rarely utilized."

A.
Cost Plus Fixed Fee
A.
Cost Plus Fixed Fee
Answers
B.
Cost Plus Percentage of Cost
B.
Cost Plus Percentage of Cost
Answers
C.
Cost Plus Incentive Fee
C.
Cost Plus Incentive Fee
Answers
D.
Cost Plus Award Fee
D.
Cost Plus Award Fee
Answers
Suggested answer: B

Question 47

Report
Export
Collapse

Ned is the program manager for his organization and he's considering some new materials for his program. He and his team have never worked with these materials before and he wants to ask the vendor for some additional information, a demon, and even some samples. What type of a document should Ned send to the vendor?

A.
IFB
A.
IFB
Answers
B.
RFQ
B.
RFQ
Answers
C.
RFP
C.
RFP
Answers
D.
RFI
D.
RFI
Answers
Suggested answer: D

Question 48

Report
Export
Collapse

Against which of the following does SSH provide protection? Each correct answer represents a complete solution. Choose two.

A.
IP spoofing
A.
IP spoofing
Answers
B.
Broadcast storm
B.
Broadcast storm
Answers
C.
Password sniffing
C.
Password sniffing
Answers
D.
DoS attack
D.
DoS attack
Answers
Suggested answer: A, C

Question 49

Report
Export
Collapse

What is a stakeholder analysis chart?

A.
It is a matrix that documents stakeholders' threats, perceived threats, and communication needs.
A.
It is a matrix that documents stakeholders' threats, perceived threats, and communication needs.
Answers
B.
It is a matrix that identifies all of the stakeholders and to whom they must report to.
B.
It is a matrix that identifies all of the stakeholders and to whom they must report to.
Answers
C.
It is a matrix that documents the stakeholders' requirements, when the requirements were created, and when the fulfillment of the requirements took place.
C.
It is a matrix that documents the stakeholders' requirements, when the requirements were created, and when the fulfillment of the requirements took place.
Answers
D.
It is a matrix that identifies who must communicate with whom.
D.
It is a matrix that identifies who must communicate with whom.
Answers
Suggested answer: A

Question 50

Report
Export
Collapse

Which of the following strategies is used to minimize the effects of a disruptive event on a company, and is created to prevent interruptions to normal business activity?

A.
Disaster Recovery Plan
A.
Disaster Recovery Plan
Answers
B.
Continuity of Operations Plan
B.
Continuity of Operations Plan
Answers
C.
Contingency Plan
C.
Contingency Plan
Answers
D.
Business Continuity Plan
D.
Business Continuity Plan
Answers
Suggested answer: D
Total 218 questions
Go to page: of 22
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms