ExamGecko
Login
Home / ISC / CISSP-ISSMP / List of questions
Ask Question

ISC CISSP-ISSMP Practice Test - Questions Answers, Page 9

List of questions

Question 81

Report Export Collapse

Which of the following terms related to risk management represents the estimated frequency at which a threat is expected to occur?

Safeguard
Safeguard
Single Loss Expectancy (SLE)
Single Loss Expectancy (SLE)
Exposure Factor (EF)
Exposure Factor (EF)
Annualized Rate of Occurrence (ARO)
Annualized Rate of Occurrence (ARO)
Suggested answer: D
asked 18/09/2024
Lucas Bila
38 questions

Question 82

Report Export Collapse

Which of the following types of agreement creates a confidential relationship between the parties to protect any type of confidential and proprietary information or a trade secret?

SLA
SLA
NDA
NDA
Non-price competition
Non-price competition
CNC
CNC
Suggested answer: B
asked 18/09/2024
Omer Awad
32 questions

Question 83

Report Export Collapse

Which of the following sections come under the ISO/IEC 27002 standard?

Financial assessment
Financial assessment
Asset management
Asset management
Security policy
Security policy
Risk assessment
Risk assessment
Suggested answer: B, C, D
asked 18/09/2024
Kristina Stojanovska
47 questions

Question 84

Report Export Collapse

Which of the following U.S. Federal laws addresses computer crime activities in communication lines, stations, or systems?

18 U.S.C. 1362
18 U.S.C. 1362
18 U.S.C. 1030
18 U.S.C. 1030
18 U.S.C. 1029
18 U.S.C. 1029
18 U.S.C. 2701
18 U.S.C. 2701
18 U.S.C. 2510
18 U.S.C. 2510
Suggested answer: A
asked 18/09/2024
Francesco Pignalosa
42 questions

Question 85

Report Export Collapse

Which of the following access control models uses a predefined set of access privileges for an object of a system?

Role-Based Access Control
Role-Based Access Control
Mandatory Access Control
Mandatory Access Control
Policy Access Control
Policy Access Control
Discretionary Access Control
Discretionary Access Control
Suggested answer: B
asked 18/09/2024
cesar ganguie
47 questions

Question 86

Report Export Collapse

Which of the following statements about the availability concept of Information security management is true?

It determines actions and behaviors of a single individual within a system.
It determines actions and behaviors of a single individual within a system.
It ensures reliable and timely access to resources.
It ensures reliable and timely access to resources.
It ensures that unauthorized modifications are not made to data by authorized personnel or processes.
It ensures that unauthorized modifications are not made to data by authorized personnel or processes.
It ensures that modifications are not made to data by unauthorized personnel or processes.
It ensures that modifications are not made to data by unauthorized personnel or processes.
Suggested answer: B
asked 18/09/2024
PKE Holding AG Leitgeb
40 questions

Question 87

Report Export Collapse

Which of the following is a process that identifies critical information to determine if friendly actions can be observed by adversary intelligence systems?

IDS
IDS
OPSEC
OPSEC
HIDS
HIDS
NIDS
NIDS
Suggested answer: B
asked 18/09/2024
Sari Bukhari
37 questions

Question 88

Report Export Collapse

Which of the following administrative policy controls is usually associated with government classifications of materials and the clearances of individuals to access those materials?

Separation of Duties
Separation of Duties
Due Care
Due Care
Acceptable Use
Acceptable Use
Need to Know
Need to Know
Suggested answer: D
asked 18/09/2024
Nivenl Surnder
37 questions

Question 89

Report Export Collapse

Which of the following processes will you involve to perform the active analysis of the system for any potential vulnerabilities that may result from poor or improper system configuration, known and/or unknown hardware or software flaws, or operational weaknesses in process or technical countermeasures?

Penetration testing
Penetration testing
Risk analysis
Risk analysis
Baselining
Baselining
Compliance checking
Compliance checking
Suggested answer: A
asked 18/09/2024
Re na
41 questions

Question 90

Report Export Collapse

Which of the following are the levels of military data classification system? Each correct answer represents a complete solution. Choose all that apply.

Sensitive
Sensitive
Top Secret
Top Secret
Confidential
Confidential
Secret
Secret
Unclassified
Unclassified
Public
Public
Suggested answer: A, B, C, D, E
asked 18/09/2024
Monique Canham
42 questions
Total 218 questions
Go to page: of 22
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following characteristics are described by the DIAP Information Readiness Assessment function? Each correct answer represents a complete solution. Choose all that apply.
Which of the following statements are true about security risks? Each correct answer represents a complete solution. Choose three.
Change Management is used to ensure that standardized methods and procedures are used for efficient handling of all changes. Who decides the category of a change?
Which of the following statements is related with the second law of OPSEC?
SIMULATION Fill in the blank with the appropriate phrase. ____________ is the ability to record and report on the configuration baselines associated with each configuration item at any moment of time.
Which of the following access control models uses a predefined set of access privileges for an object of a system?
How can you calculate the Annualized Loss Expectancy (ALE) that may occur due to a threat?
SIMULATION Fill in the blank with an appropriate phrase. _______is a branch of forensic science pertaining to legal evidence found in computers and digital storage media.
Which of the following recovery plans includes specific strategies and actions to deal with specific variances to assumptions resulting in a particular security problem, emergency, or state of affairs?
Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event?