IAPP CIPM Online Practice Questions and Exam Preparation

IAPP CIPM Online Questions & Answers

• Question 551:

  A computer forensic analyst is examining suspected malware from a computer system post-attack. Upon reverse engineering the code, the analyst sees several concerning instructions. One of those concerning instructions is that it installs a Unified Extensible Firmware Interface Basic Input/Output System (BIOS) rootkit, and when the system is then rebooted, the BIOS checks for a certain unknown program to be installeD: Which security feature MOST likely would have detected and prevented this type of attack if already on the system?

  A. Operating System (OS) virtualization
  B. Memory protection
  C. Cryptographic module
  D. Trusted Platform Module (TPM)
  D. Trusted Platform Module (TPM)

  ---

  Explanation

• Question 552:

  Corporate fraud has historically been difficult to detect. Which of the following methods has been the MOST helpful in unmasking embezzlement?

  A. Accidental discovery
  B. Management review
  C. Anonymous tip lines
  D. Internal audit
  C. Anonymous tip lines

  ---

  Explanation

• Question 553:

  An example of a flexibility metric for an organization Is:

  A. average batch size.
  B. scrap rate.
  C. percentageof orders delivered late.
  D. cycle time.
  D. cycle time.

  ---

  Explanation

  A flexibility metric is a measure of how well an organization can adapt to changes in demand, supply, or technology. Flexibility metrics can be classified into three categories: volume flexibility, mix flexibility, and new product flexibility. Volume flexibility is the ability to adjust the output level to meet fluctuations in demanD: Mix flexibility is the ability to produce different types of products or services with the same resources. New product flexibility is the ability to introduce new products or services quickly and efficiently. Cycle time is an example of a flexibility metric, as it measures the time required to complete a process or activity, from start to finish. Cycle time can indicate the responsiveness and agility of an organization, as shorter cycle times imply faster delivery, lower inventory, and higher customer satisfaction. Cycle time can also reflect the efficiency and quality of an organization, as shorter cycle times imply less waste, fewer errors, and lower costs. Therefore, cycle time is a relevant metric for assessing the flexibility of an organization.

• Question 554:

  Which of the following is typically used to control physical access to highly secure facilities?

  A. Surveillance
  B. Mantrap
  C. Dual control
  D. Door locks
  B. Mantrap

  ---

  Explanation

• Question 555:

  Which of the following statements correctly describes the relationship between the strategic plan and the business plan?

  A. These are two names for the same plan.
  B. The strategic plan constrains the business plan.
  C. The two plans are developed independently.
  D. The two plans are the output of a single process.
  B. The strategic plan constrains the business plan.

  ---

  Explanation

  The strategic plan sets the long-term direction and goals of the organization, while the business plan translates those strategies into more detailed, actionable plans. Therefore, the business plan must align with and operate within the constraints set by the strategic plan.

• Question 556:

  The demand for an item has increasing forecast error, whereas all other factors remain constant. Which of the following remains constant while maintaining the same customer service level?

  A. Reorder point(ROP)
  B. Safety stock
  C. Inventory investment
  D. Safety factor
  D. Safety factor

  ---

  Explanation

  The safety factor is a multiplier based on the desired customer service level (e.g., 95%, 99%) and does not change as forecast error increases. However, the safety stock itself would increase to maintain that service level, since it's calculated using both the safety factor and the standard deviation of forecast error.

• Question 557:

  The percentage of time that the work center is active compared to the available time is called: A. Work center utilization

  B. Work center availability

  C. Work center efficiency

  D. Work center production

  Correct Answer. A
  A

  ---

  Explanation

  Work center utilization is the percentage of available time that a work center is actually being used for productive work. It reflects how effectively a resource is scheduled or loaded.

• Question 558:

  What is the MAIN privacy risk raised by federated identity solutions?

  A. The potential for tracking and profiling an individual's transactions
  B. The potential to break the chain of trust between identity brokers
  C. The potential for exposing an organization's sensitive business information
  D. The potential for unauthorized access to user attributes
  A. The potential for tracking and profiling an individual's transactions

  ---

  Explanation

• Question 559:

  A Structured Query Language (SQL) database is hosted on a hardened, secure server. All unused ports are locked down, but external connections from untrusted networks are still required to be allowed through. What is the BEST way to ensure transactions to/from this server remain secure?

  A. Secure SQL service port with a Transport Layer Security (TLS) certificate.
  B. Use Multi-Factor Authentication (MFA) for all logins to the server.
  C. Secure SQL service port with a Secure Sockets Layer (SSL) certificate.
  D. Scan all connections to the server for malicious packets.
  A. Secure SQL service port with a Transport Layer Security (TLS) certificate.

  ---

  Explanation

• Question 560:

  In preparing for a facility location decision, proximity to suppliers would be classified as which kind of criteria?

  A. Service level requirements
  B. Future flexibility factors
  C. Access to transportation
  D. Cost factors
  C. Access to transportation

  ---

  Explanation

  Proximity to suppliers is typically considered under access to transportation because it influences how easily and quickly materials can be delivered to the facility. Good transportation access helps reduce lead times and shipping costs, which are critical in facility location decisions.