Summer Certification Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Home
ISC
CISSP Concentrations
ISSMP
ISSMP®: Information Systems Security Management Professional Questions and Answers

Pass the ISC CISSP Concentrations ISSMP Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam ISSMP Premium Access

View all detail and faqs for the ISSMP exam

Go to Exam

700 Students Passed

94% Average Score

95% Same Questions

Viewing page 6 out of 7 pages

Viewing questions 51-60 out of questions

Questions # 51:

Which of the following penetration testing phases involves reconnaissance or data gathering?

Options:

Attack phase

Pre-attack phase

Post-attack phase

Out-attack phase

Answer

Questions # 52:

Which of the following response teams aims to foster cooperation and coordination in incident prevention, to prompt rapid reaction to incidents, and to promote information sharing among members and the community at large?

Options:

CSIRT

CERT

FIRST

FedCIRC

Answer

Questions # 53:

Which of the following are the responsibilities of a custodian with regard to data in an information classification program? Each correct answer represents a complete solution. Choose three.

Options:

Determining what level of classification the information requires

Running regular backups and routinely testing the validity of the backup data

Controlling access, adding and removing privileges for individual users

Performing data restoration from the backups when necessary

Answer

B, C, D

Questions # 54:

You are an Incident manager in Orangesect.Inc. You have been tasked to set up a new extension of your enterprise. The networking, to be done in the new extension, requires different types of cables and an appropriate policy that will be decided by you. Which of the following stages in the Incident handling process involves your decision making?

Options:

Preparation

Eradication

Identification

Containment

Answer

Questions # 55:

Mark works as a security manager for SoftTech Inc. He is involved in the BIA phase to create a document to be used to help understand what impact a disruptive event would have on the business. The impact might be financial or operational. Which of the following are the objectives related to the above phase in which Mark is involved? Each correct answer represents a part of the solution. Choose three.

Options:

Resource requirements identification

Criticality prioritization

Down-time estimation

Performing vulnerability assessment

Answer

A, B, C

Questions # 56:

Which of the following can be prevented by an organization using job rotation and separation of duties policies?

Options:

Collusion

Eavesdropping

Buffer overflow

Phishing

Answer

Questions # 57:

You work as a security manager for SoftTech Inc. You are conducting a security awareness campaign for your employees. Which of the following ideas will you consider the best when conducting a security awareness campaign?

Options:

Target system administrators and the help desk.

Provide technical details on exploits.

Provide customizedmessages for different groups.

Target senior managers and business process owners.

Answer

Questions # 58:

You work as a project manager for SoftTech Inc. A threat with a dollar value of $150,000 is expected to happen in your project and the frequency of threat occurrence per year is 0.001. What will be the annualized loss expectancy in your project?

Options:

$180.25

$150

$100

$120

Answer

Questions # 59:

Which of the following Acts enacted in United States amends Civil Rights Act of 1964, providing technical changes affecting the length of time allowed to challenge unlawful seniority provisions, to sue the federal government for discrimination and to bring age discrimination claims?