CISSP-ISSAP Exam Details

  • Exam Code
    :CISSP-ISSAP
  • Exam Name
    :ISSAP - Information Systems Security Architecture Professional (ISSAP)
  • Certification
    :ISC Certifications
  • Vendor
    :ISC
  • Total Questions
    :237 Q&As
  • Last Updated
    :Jul 14, 2026

ISC CISSP-ISSAP Online Questions & Answers

  • Question 61:

    Which of the following processes is used to identify relationships between mission critical applications, processes, and operations and all supporting elements?

    A. Critical path analysis
    B. Functional analysis
    C. Risk analysis
    D. Business impact analysis

  • Question 62:

    The service-oriented modeling framework (SOMF) introduces five major life cycle modeling activities that drive a service evolution during design-time and run-time. Which of the following activities integrates SOA software assets and establishes SOA logical environment dependencies?

    A. Service-oriented business integration modeling
    B. Service-oriented logical design modeling
    C. Service-oriented discovery and analysis modeling
    D. Service-oriented logical architecture modeling

  • Question 63:

    Which of the following is a network service that stores and organizes information about a network users and network resources and that allows administrators to manage users' access to the resources?

    A. SMTP service
    B. Terminal service
    C. Directory service
    D. DFS service

  • Question 64:

    A helpdesk technician received a phone call from an administrator at a remote branch office. The administrator claimed to have forgotten the password for the root account on UNIX servers and asked for it. Although the technician didn't know

    any administrator at the branch office, the guy sounded really friendly and since he knew the root password himself, he supplied the caller with the password.

    What type of attack has just occurred?

    A. Social Engineering attack
    B. Brute Force attack
    C. War dialing attack
    D. Replay attack

  • Question 65:

    John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. John notices that the We-are-secure network is vulnerable to a man-in-the- middle attack since the key exchange process of the cryptographic algorithm it is using does not thenticate participants. Which of the following cryptographic algorithms is being used by the We-are- secure server?

    A. Blowfish
    B. Twofish
    C. RSA
    D. Diffie-Hellman

  • Question 66:

    Single Loss Expectancy (SLE) represents an organization's loss from a single threat. Which of the following formulas best describes the Single Loss Expectancy (SLE)?

    A. SLE = Asset Value (AV) * Exposure Factor (EF)
    B. SLE = Asset Value (AV) * Annualized Rate of Occurrence (ARO)
    C. SLE = Annualized Loss Expectancy (ALE) * Annualized Rate of Occurrence (ARO)
    D. SLE = Annualized Loss Expectancy (ALE) * Exposure Factor (EF)

  • Question 67:

    Which of the following methods of encryption uses a single key to encrypt and decrypt data?

    A. Asymmetric
    B. Symmetric
    C. S/MIME
    D. PGP

  • Question 68:

    Which of the following is responsible for maintaining certificates in a public key infrastructure (PKI)?

    A. Domain Controller
    B. Certificate User
    C. Certification Authority
    D. Internet Authentication Server

  • Question 69:

    Which of the following security devices is presented to indicate some feat of service, a special accomplishment, a symbol of authority granted by taking an oath, a sign of legitimate employment or student status, or as a simple means of identification?

    A. Sensor
    B. Alarm
    C. Motion detector
    D. Badge

  • Question 70:

    Which of the following cables provides maximum security against electronic eavesdropping on a network?

    A. Fibre optic cable
    B. STP cable
    C. UTP cable
    D. NTP cable

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only ISC exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CISSP-ISSAP exam preparations and ISC certification application, do not hesitate to visit our Vcedump.com to find your solutions here.