CISSP

CISSP: Unit 3: Security Engineering, Questions with accurate answers, 100% Accurate, rated A+ Abstraction - -Involves the removal of characteristics from an entity in order to easily represent its essential properties. Access Control Matrix - -A two-dimensional table that allows for individual subjects and objects to be related to each other. Asymmetric Algorithms - -One-way functions, that is, a process that is much simpler to go in one direction (forward) than to go in the other d...

CISSP test bank - Exam questions to study/review 1. Top questions with accurate answers, 100% Accurate. What law protects the right of citizens to privacy by placing restrictions on the authority granted to government agencies to search private residences and facilities? a) Privacy act b) Forth Amendment c) Second Amendment d) Gramm-Leach-Bliley act - -b) Fourth Amendment Which component of the CIA triad has the most avenue or vectors of attacks and compromise? - -Availability Dur...

CISSP - Legal, Regulations, Investigations, Compliance. Exam Questions and answers, 100% Accurate, graded A+ HIPAA - -The law provides national standards and procedures for the storage, use, and transmission of personal medical information and health care data.The privacy and security portion of this law seeks to guard Protected Health Information (PHI) from unauthorized use or disclosure. GLBA - -1999, this law requires financial institutions to: develop privacy notices to give to custo...

CISSP 2021 Exam Question preview, graded A+. ISC2 Code of Ethics - -1. Protect society, the commonwealth, and the infrastructure. 2. Act honorably, honestly, justly, responsibly, and legally. 3. Provide diligent and competent service to principals. 4. Advance and protect the profession. Fraggle Attack - -Smurf attack variation that uses UDP instead of ICMP. Security Marking - -Security Marking reflects applicable laws, directives, policies, regulations and standards. Type...

CISSP module 1 exam Questions and answers, 100% Accurate. Graded A+ An organization is implementation g a preselected baseline of security controls but finds that some of the controls aren't relevant to their needs. What should they do - -Tailor the baseline to their requirements An admin is planning to deploy a database server and wants to ensure it is secure. She reviews a list of baseline security controls and identifies the security controls that apply to this database server. What ...

CISSP PRACTICE TESTS Chapter 7▪ Security Operations (Domain7), Questions and answers, 100% Accurate. Rated A 1.Referring to the figure below, what technology is shown that provides fault tolerance for the database servers? Refer to page 138 in book. A. Failover cluster B. UPS C. Tape backup D. Cold site - -A. Failover cluster 2. Joe is the security administrator for an ERP system. He is preparing to create accounts for several new employees. What default access should he give to al...

CISSP Flash Cards, Questions and answers, rated A+ What are the three encryption algorithms supported by the Digital Signature Standard? - -DSA, RSA, and ECDSA What ITU standard describes the contents of a digital certificate? - -X.509 What is the process by which you are issued a digital certificate? - -Enrollment True or false? PEM provides protection against replay attacks. - -False What protocol uses the RSA encryption algorithm to provide encrypted mail support for a numbe...

CISSP EXAM Questions & Answers, 100% Accurate. Graded A+ 1. Which of the following best describes the relationship between COBIT and ITIL? A. COBIT is a model for IT governance, whereas ITIL is a model for corporate governance. B. COBIT provides a corporate governance roadmap, whereas ITIL is a customizable framework for IT service management. C. COBIT defines IT goals, whereas ITIL provides the process-level steps on how to achieve them. D. COBIT provides a framework for achieving busi...

CISSP - Exam Practice/Study Questions with accurate answers, graded A+. Latest update. What is the most effective defense against cross-site scripting attacks? a) Limiting account privileges b)User Authentication c) Input validation d)encryption c) Input validation prevents cross-site scripting attacks by limiting user input to a predefined range. This prevents the attacker from including the HTML ˂SCRIPT˃ tag in the input. What phase of the Electronic Discovery Reference Model pu...

CISSP PRACTICE TESTS Chapter 8▪Software Development Security (Domain8). Questions and answers, 100% ACCURATE. 1. When desgning an object-oriented model, which of the following situations is ideal? A. High cohesion, high coupling B. High cohesion, low coupling C. Low cohesion, low coupling D. Lo cohesion, high coupling - -B. High cohesion, low coupling 2. Which of the following is a common way that attackers leverage botnets? A. Sending spam messages B. Conducting brute-force at...