CCSP Free Practice Test

- (Exam Topic 3)
Dynamic application security testing (DAST) is usually considered a ______ form of testing. Response:
White-box

1. A. Parched field
2. B. Black-box
3. C. Gray-box
4. D. Parched field

Correct Answer: B

- (Exam Topic 3)
Which of the following would NOT be used to determine the classification of data?
Response:

1. A. Metadata
2. B. PII
3. C. Creator
4. D. Future use

Correct Answer: D

- (Exam Topic 2)
Which of the following is not typically included in the list of critical assets specified for continuity during BCDR contingency operations?
Response:

1. A. Systems
2. B. Data
3. C. Cash
4. D. Personnel

Correct Answer: C

- (Exam Topic 3)
DLP solutions can aid all of the following security-related efforts except ______.
Response:

1. A. Access control
2. B. Egress monitoring
3. C. e-discovery/forensics
4. D. Data categorization/classification

Correct Answer: A

- (Exam Topic 1)
Which of the following best describes SAML? Response:

1. A. A standard for developing secure application management logistics
2. B. A standard for exchanging authentication and authorization data between security domains
3. C. A standard for exchanging usernames and passwords across devices
4. D. A standard used for directory synchronization

Correct Answer: B