CISSP Premium Bundle

CISSP Premium Bundle

Certified Information Systems Security Professional (CISSP) Certification Exam

4.5 
(12435 ratings)
0 QuestionsPractice Tests
0 PDFPrint version
December 4, 2024Last update

ISC2 CISSP Free Practice Questions

Q1. Which of the following is the FIRST action that a system administrator should take when it is revealed during a penetration test that everyone in an organization has unauthorized access to a server holding sensitive data? 

A. Immediately document the.finding and.report to senior management. 

B. Use system privileges to alter the permissions to secure the server 

C. Continue the testing to its completion and then inform IT management 

D. Terminate the penetration test and pass the finding to the server management team 

Answer:

Q2. HOTSPOT 

In the network design below, where.is.the.MOST secure.Local Area Network (LAN).segment to deploy a.Wireless.Access.Point (WAP) that provides.contractors.access to the Internet and authorized enterprise services? 

Answer:  

Q3. The BEST way to check for good security programming practices, as well as auditing for possible backdoors, is to conduct 

A. log auditing. 

B. code reviews. 

C. impact assessments. 

D. static analysis. 

Answer:

Q4. Copyright provides protection for which of the following? 

A. Ideas expressed in literary works 

B. A particular expression of an idea 

C. New and non-obvious inventions 

D. Discoveries of natural phenomena 

Answer:

Q5. Which one of the following security mechanisms provides the BEST way to restrict the execution of privileged procedures? 

A. Role Based Access Control (RBAC) 

B. Biometric access control 

C. Federated Identity Management (IdM) 

D. Application hardening 

Answer:

Q6. Which of the following methods protects.Personally Identifiable.Information (PII).by use of a full replacement of the data element? 

A. Transparent Database Encryption (TDE) 

B. Column level database encryption 

C. Volume encryption 

D. Data tokenization 

Answer:

Q7. When implementing controls in a heterogeneous end-point network for an organization, it is critical that 

A. hosts are able to establish network communications. 

B. users can make modifications to their security software configurations. 

C. common software security components be implemented across all hosts. 

D. firewalls running on each host are fully customizable by the user. 

Answer:

Q8. Which of the following is a reason to use manual patch installation instead of automated patch management? 

A. The cost required to install patches will be reduced. 

B. The time during which systems will remain vulnerable to an exploit will be decreased. 

C. The likelihood of system or application incompatibilities will be decreased. 

D. The ability to cover large geographic areas is increased. 

Answer:

Q9. At a MINIMUM, a formal review of any Disaster Recovery Plan (DRP) should be conducted 

A. monthly. 

B. quarterly. 

C. annually. 

D. bi-annually. 

Answer:

Q10. In a data classification scheme, the data is owned by the 

A. Information Technology (IT) managers. 

B. business managers. 

C. end users. 

D. system security managers. 

Answer:

Q11. A security manager has noticed an inconsistent application of server security controls resulting in vulnerabilities on critical systems. What is the MOST likely cause of this issue? 

A. A lack of baseline standards 

B. Improper documentation of security guidelines 

C. A poorly designed security policy communication program 

D. Host-based Intrusion Prevention System (HIPS).policies are ineffective 

Answer:

Q12. Which of the following BEST describes a rogue Access Point (AP)? 

A. An AP that is not protected by a firewall 

B. An.AP not configured to use Wired Equivalent Privacy (WEP) with Triple Data Encryption Algorithm (3DES) 

C. An.AP connected to the wired infrastructure but not under the management of authorized network administrators 

D. An.AP infected by any kind of Trojan or Malware 

Answer:

Q13. An organization is found lacking the ability to properly establish performance indicators for its Web hosting solution during an audit. What would be the MOST probable cause? 

A. Improper deployment of the Service-Oriented Architecture.(SOA) 

B. Absence of a Business Intelligence.(BI) solution 

C. Inadequate cost modeling 

D. Insufficient Service Level Agreement.(SLA).

Answer:

Q14. What would be the PRIMARY concern when designing and coordinating a security assessment for an Automatic Teller Machine (ATM) system? 

A. Physical access to the electronic hardware 

B. Regularly scheduled maintenance process 

C. Availability of the network connection 

D. Processing delays 

Answer:

Q15. Which of the following violates identity and access management best practices? 

A. User accounts 

B. System accounts 

C. Generic accounts 

D. Privileged accounts 

Answer:

START CISSP EXAM