ISC CISSP-ISSMP Online Practice Questions and Exam Preparation

ISC CISSP-ISSMP Online Questions & Answers

• Question 141:

  Which of the following concepts represent the three fundamental principles of information security? Each correct answer represents a complete solution. Choose three.

  A. Confidentiality
  B. Integrity
  C. Availability
  D. Privacy
  A. Confidentiality
  B. Integrity
  C. Availability

• Question 142:

  The goal of Change Management is to ensure that standardized methods and procedures are used for efficient handling of all changes. Which of the following are Change Management terminologies? Each correct answer represents a part of the solution. Choose three.

  A. Request for Change
  B. Service Request Management
  C. Change
  D. Forward Schedule of Changes
  A. Request for Change
  C. Change
  D. Forward Schedule of Changes

• Question 143:

  Which of the following types of cyber stalking damage the reputation of their victim and turn other people against them by setting up their own Websites, blogs or user pages for this purpose?

  A. Encouraging others to harass the victim
  B. False accusations
  C. Attempts to gather information about the victim
  D. False victimization
  B. False accusations

• Question 144:

  Which of the following BCP teams provides clerical support to the other teams and serves as a message center for the user-recovery site?

  A. Security team
  B. Data preparation and records team
  C. Administrative support team
  D. Emergency operations team
  C. Administrative support team

• Question 145:

  What are the purposes of audit records on an information system? Each correct answer represents a complete solution. Choose two.

  A. Troubleshooting
  B. Investigation
  C. Upgradation
  D. Backup
  A. Troubleshooting
  B. Investigation

• Question 146:

  Which of the following are known as the three laws of OPSEC? Each correct answer represents a part of the solution. Choose three.

  A. Ifyou don't know the threat, how do you know what to protect?
  B. If you don't know what to protect, how do you know you are protecting it?
  C. If you are not protecting it (the critical and sensitive information), the adversary wins!
  D. If you don't knowabout your security resources you cannot protect your network.
  A. Ifyou don't know the threat, how do you know what to protect?
  B. If you don't know what to protect, how do you know you are protecting it?
  C. If you are not protecting it (the critical and sensitive information), the adversary wins!

• Question 147:

  Which of the following measurements of an enterprise's security state is the process whereby an organization establishes the parameters within which programs, investments, and acquisitions reach the desired results?

  A. Information sharing
  B. Ethics
  C. Performance measurement
  D. Risk management
  C. Performance measurement

• Question 148:

  You are an Incident manager in Orangesect.Inc. You have been tasked to set up a new extension of your enterprise. The networking, to be done in the new extension, requires different types of cables and an appropriate policy that will be decided by you.

  Which of the following stages in the Incident handling process involves your decision making?

  A. Preparation
  B. Eradication
  C. Identification
  D. Containment
  A. Preparation

• Question 149:

  Which of the following recovery plans includes specific strategies and actions to deal with specific variances to assumptions resulting in a particular security problem, emergency, or state of affairs?

  A. Business continuity plan
  B. Disaster recovery plan
  C. Continuity of Operations Plan
  D. Contingency plan
  D. Contingency plan

• Question 150:

  You are the project manager of the HJK project for your organization. You and the project team have created risk responses for many of the risk events in the project. A teaming agreement is an example of what risk response?

  A. Mitigation
  B. Sharing
  C. Acceptance
  D. Transference
  B. Sharing