CISSP - Certified Information Systems Security Professional
CISSP - Certified Information Systems Security Professional
Exam (elaborations)
CISSP Question and answers already passed 2024
6 views 0 purchase
Course
CISSP - Certified Information Systems Security Professional
Institution
CISSP - Certified Information Systems Security Professional
CISSP Question and answers already passed 2024 Accountability - correct answer Holds individuals accountable for their actions
Accountability Principle - correct answer OECD Privacy Guideline principle which states individuals should have the right to challenge the content of any personal ...
CISSP
Accountability - correct answer Holds individuals accountable for their actions
Accountability Principle - correct answer OECD Privacy Guideline principle which states individuals should have the right to challenge the content of any personal data being held, and have a process for updating their personal data if found to be inaccurate or incomplete
Act honorably, justly, responsibly, and legally - correct answer Second canon of the (ISC)2 Code of ethics
Administrative Law - correct answer Law enacted by government agencies, aka regulatory law
Advance and protect the profession - correct answer Fourth canon of the (ISC)2 Code of Ethics
Agents of law enforcement - correct answer Private citizens carrying out actions on the behalf of law enforcement
AIC triad - correct answer The three security principles: availability, intregrity, and confidentiality.
ALE/Annualized Loss Expectancy - correct answer The cost of loss due to a
risk over a year Annualized loss expectancy (ALE) - correct answer A dollar amount that estiamtes the loss potenial from a risk in a span of a year. Single Loss Expectancy (SLE) x annualized rate of occurrence (ARO) = ALE
Annualized Rate of Occurrence (ARO) - correct answer The value that represents the estimated possibility of a specific threat taking place within a one-year timeframe.
Antivirus Software - correct answer Software designed to prevent and detect
malware infections
ARO/Annual Rate of Occurrence - correct answer The number of losses suffered per year
Attack - correct answer An attempt to bypass security controls in a system with the mission of using that system or compromising it. An attack is usually accomplished by exploiting a current vulnerability.
Authentication - correct answer Proof of an Identity claim
Authorization - correct answer Actions an individual can perform on a system
AV/Asset Value - correct answer The Value of a protected asset
Availability - correct answer The reliability and accessibility of data and resources to authorized identified individuals in a timely manner.
Availability - correct answer Assures information is available when needed Awareness - correct answer Security Control designed to change user behavior
Background checks - correct answer A Verification of a person's background
and experience, Also called pre-employment screening
Baseline - correct answer Uniform ways to implement a safeguard , administrative control
Baseline - correct answer The minimum level of security necessary to support and enforce a security policy.
Best evidence rule - correct answer Requires use of the strongest possible evidence
Best practice - correct answer A consensus of the best way to protect the confidentiality, integrity and availability of assets
Bot - correct answer A computer system running malware that is controlled via a botnet
Botnet - correct answer A central bot command and control (C&C) network, managed by humans
Breach notification - correct answer Notification of persons whose personal data has been, or is likely to have been, compromised Business Impact Analysis (BIA) - correct answer A functional analysis in which a team collects data, documents business functions, develops a hierarchy of business functions, and applies a classification scheme to indicate each individual function's criticality level.
CIA triad - correct answer Confidentiality, Integrity and Availability
Circumstantial evidence - correct answer Evidence that servers to establish the circumstances related to particular points or even other evidence
Civil law - correct answer Law that resolves disputes between individuals or organizations
Civil law (legal system) - correct answer Legal system that leverages codified laws or statues to determine what is considered within the bounds of law
Classification - correct answer A systematic arrangement of objects into groups or categories according to a set of established criteria. Data and resources can be assigned a level of sensitivity as they are being created, amended, enhanced, stored, or transmitted. The classification level then determines the extent to which the resource needs to be controlled and secured, and is indicative of its value in terms of information assets.
Collection Limitation Principle - correct answer OECD Privacy Guideline principle which states personal data collection should have limits, be obtained in a lawful manner, and, unless there is a compelling reason to the contrary, with the individuals knowledge and approval.
Collusion - correct answer Two or more people working together to carry out
a fraudulent activity. More than one person would need to work together to cause some type of destruction or fraud; this drastically reduces its probability.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller flyhigher329. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $14.49. You're not tied to anything after your purchase.