CISMP-V9 Free Practice Test

Which security framework impacts on organisations that accept credit cards, process credit card transactions, store relevant data or transmitcredit card data?

1. A. PCI DSS.
2. B. TOGAF.
3. C. ENISA NIS.
4. D. Sarbanes-Oxiey

Correct Answer: A
https://digitalguardian.com/blog/what-pci-compliance

Which of the following compliance legal requirements are covered by the ISO/IEC 27000 series?
* 1. Intellectual Property Rights.
* 2. Protection of Organisational Records
* 3. Forensic recovery of data.
* 4. Data Deduplication.
* 5. Data Protection & Privacy.

1. A. 1, 2 and 3
2. B. 3, 4 and 5
3. C. 2, 3 and 4
4. D. 1, 2 and 5

Correct Answer: D

What Is the PRIMARY reason for organisations obtaining outsourced managed security services?

1. A. Managed security services permit organisations to absolve themselves of responsibility for security.
2. B. Managed security services are a de facto requirement for certification to core security standards such as ISG/IEC 27001
3. C. Managed security services provide access to specialist security tools and expertiseon a shared, cost-effective basis.
4. D. Managed security services are a powerful defence against litigation in the event of a security breach or incident

Correct Answer: A

Which cryptographic protocol preceded Transport Layer Security (TLS)?

1. A. Public Key Infrastructure (PKI).
2. B. Simple Network Management Protocol (SNMP).
3. C. Secure Sockets Layer (SSL).
4. D. Hypertext Transfer Protocol Secure (HTTPS)

Correct Answer: C

In order to better improve the security culture within an organisation with a top down approach, which of the following actions at board level is theMOST effective?

1. A. Appointment of a Chief Information Security Officer (CISO).
2. B. Purchasing all senior executives personal firewalls.
3. C. Adopting an organisation wide "clear desk" policy.
4. D. Developing a security awareness e-learning course.

Correct Answer: A