CISSP Free Practice Test

- (Exam Topic 13)
What is the process of removing sensitive data from a system or storage device with the intent that the data cannot be reconstructed by any known technique?

1. A. Purging
2. B. Encryption
3. C. Destruction
4. D. Clearing

Correct Answer: A

- (Exam Topic 14)
The threat modeling identifies a man-in-the-middle (MITM) exposure. Which countermeasure should the information system security officer (ISSO) select to mitigate the risk of a protected Health information (PHI) data leak?

1. A. Auditing
2. B. Anonymization
3. C. Privacy monitoring
4. D. Data retention

Correct Answer: B

- (Exam Topic 11)
What is the MOST efficient way to secure a production program and its data?

1. A. Disable default accounts and implement access control lists (ACL)
2. B. Harden the application and encrypt the data
3. C. Disable unused services and implement tunneling
4. D. Harden the servers and backup the data

Correct Answer: B

- (Exam Topic 15)
What is the FIRST step for an organization to take before allowing personnel to access social media from a corporate device or user account?

1. A. Publish a social media guidelines document.
2. B. Publish an acceptable usage policy.
3. C. Document a procedure for accessing social media sites.
4. D. Deliver security awareness training.

Correct Answer: A

- (Exam Topic 13)
Which of the following is a direct monetary cost of a security incident?

1. A. Morale
2. B. Reputation
3. C. Equipment
4. D. Information

Correct Answer: C