CISSP ISC2 Exam Questions and Free Practice Test

Question 127

- (Exam Topic 11)
Which of the following is the MOST likely cause of a non-malicious data breach when the source of the data breach was an un-marked file cabinet containing sensitive documents?

A. Ineffective data classification

B. Lack of data access controls

C. Ineffective identity management controls

D. Lack of Data Loss Prevention (DLP) tools

Correct Answer:A

Question 128

- (Exam Topic 13)
A Security Operations Center (SOC) receives an incident response notification on a server with an active
intruder who has planted a backdoor. Initial notifications are sent and communications are established. What MUST be considered or evaluated before performing the next step?

A. Notifying law enforcement is crucial before hashing the contents of the server hard drive

B. Identifying who executed the incident is more important than how the incident happened

C. Removing the server from the network may prevent catching the intruder

D. Copying the contents of the hard drive to another storage device may damage the evidence

Correct Answer:C
Section: Security Operations

Question 129

- (Exam Topic 10)
Which of the following MUST system and database administrators be aware of and apply when configuring systems used for storing personal employee data?

A. Secondary use of the data by business users

B. The organization's security policies and standards

C. The business purpose for which the data is to be used

D. The overall protection of corporate resources and data

Correct Answer:B

Question 130

- (Exam Topic 13)
An Information Technology (IT) professional attends a cybersecurity seminar on current incident response methodologies.
What code of ethics canon is being observed?

A. Provide diligent and competent service to principals

B. Protect society, the commonwealth, and the infrastructure

C. Advance and protect the profession

D. Act honorable, honesty, justly, responsibly, and legally

Correct Answer:C
Section: Security Operations

Question 131

- (Exam Topic 3)
What is the second phase of Public Key Infrastructure (PKI) key/certificate life-cycle management?

A. Implementation Phase

B. Initialization Phase

C. Cancellation Phase

D. Issued Phase

Correct Answer:D

Question 132

- (Exam Topic 9)
An organization allows ping traffic into and out of their network. An attacker has installed a program on the network that uses the payload portion of the ping packet to move data into and out of the network. What type of attack has the organization experienced?

A. Data leakage

B. Unfiltered channel

C. Data emanation

D. Covert channel

Correct Answer:D

START CISSP EXAM