CISSP-ISSAP Exam Details

  • Exam Code
    :CISSP-ISSAP
  • Exam Name
    :ISSAP - Information Systems Security Architecture Professional (ISSAP)
  • Certification
    :ISC Certifications
  • Vendor
    :ISC
  • Total Questions
    :237 Q&As
  • Last Updated
    :Jul 14, 2026

ISC CISSP-ISSAP Online Questions & Answers

  • Question 1:

    Which of the following is an input device that is used for controlling machines such as cranes, trucks, underwater unmanned vehicles, wheelchairs, surveillance cameras, and zero turning radius lawn mowers?

    A. PS/2
    B. Joystick
    C. Microphone
    D. AGP

  • Question 2:

    Which of the following statements about incremental backup are true? Each correct answer represents a complete solution. Choose two.

    A. It is the fastest method of backing up data.
    B. It is the slowest method for taking a data backup.
    C. It backs up the entire database, including the transaction log.
    D. It backs up only the files changed since the most recent backup and clears the archive bit.

  • Question 3:

    Which of the following statements about a stream cipher are true? Each correct answer represents a complete solution. Choose three.

    A. It typically executes at a higher speed than a block cipher.
    B. It divides a message into blocks for processing.
    C. It typically executes at a slower speed than a block cipher.
    D. It divides a message into bits for processing.
    E. It is a symmetric key cipher.

  • Question 4:

    In which of the following Person-to-Person social engineering attacks does an attacker pretend to be an outside contractor, delivery person, etc., in order to gain physical access to the organization?

    A. In person attack
    B. Third-party authorization attack
    C. Impersonation attack
    D. Important user posing attack

  • Question 5:

    You work as an Incident handler in Mariotrixt.Inc. You have followed the Incident handling process to handle the events and incidents. You identify Denial of Service attack (DOS) from a network linked to your internal enterprise network. Which of the following phases of the Incident handling process should you follow next to handle this incident?

    A. Containment
    B. Preparation
    C. Recovery
    D. Identification

  • Question 6:

    A user is sending a large number of protocol packets to a network in order to saturate its resources and to disrupt connections to prevent communications between services. Which type of attack is this?

    A. Denial-of-Service attack
    B. Vulnerability attack
    C. Social Engineering attack
    D. Impersonation attack

  • Question 7:

    Which of the following statements are true about Public-key cryptography? Each correct answer represents a complete solution. Choose two.

    A. Data encrypted with the secret key can only be decrypted by another secret key.
    B. The secret key can encrypt a message, and anyone with the public key can decrypt it.
    C. The distinguishing technique used in public key-private key cryptography is the use of symmetric key algorithms.
    D. Data encrypted by the public key can only be decrypted by the secret key.

  • Question 8:

    Which of the following should the administrator ensure during the test of a disaster recovery plan?

    A. Ensure that the plan works properly
    B. Ensure that all the servers in the organization are shut down.
    C. Ensure that each member of the disaster recovery team is aware of their responsibility.
    D. Ensure that all client computers in the organization are shut down.

  • Question 9:

    Which of the following techniques can be used by an administrator while working with the symmetric encryption cryptography? Each correct answer represents a complete solution. Choose all that apply.

    A. Block cipher
    B. Stream cipher
    C. Transposition cipher
    D. Message Authentication Code

  • Question 10:

    Your customer is concerned about security. He wants to make certain no one in the outside world can see the IP addresses inside his network. What feature of a router would accomplish this?

    A. Port forwarding
    B. NAT
    C. MAC filtering
    D. Firewall

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only ISC exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CISSP-ISSAP exam preparations and ISC certification application, do not hesitate to visit our Vcedump.com to find your solutions here.