CISSP Free Practice Test

- (Exam Topic 11)
After a thorough analysis, it was discovered that a perpetrator compromised a network by gaining access to the network through a Secure Socket Layer (SSL) Virtual Private Network (VPN) gateway. The perpetrator guessed a username and brute forced the password to gain access. Which of the following BEST mitigates this issue?

1. A. Implement strong passwords authentication for VPN
2. B. Integrate the VPN with centralized credential stores
3. C. Implement an Internet Protocol Security (IPSec) client
4. D. Use two-factor authentication mechanisms

Correct Answer: D

- (Exam Topic 11)
What is the PRIMARY goal for using Domain Name System Security Extensions (DNSSEC) to sign records?

1. A. Integrity
2. B. Confidentiality
3. C. Accountability
4. D. Availability

Correct Answer: A

- (Exam Topic 13)
A company seizes a mobile device suspected of being used in committing fraud. What would be the BEST method used by a forensic examiner to isolate the powered-on device from the network and preserve the evidence?

1. A. Put the device in airplane mode
2. B. Suspend the account with the telecommunication provider
3. C. Remove the SIM card
4. D. Turn the device off

Correct Answer: A

- (Exam Topic 13)
Which of the following is a responsibility of a data steward?

1. A. Ensure alignment of the data governance effort to the organization.
2. B. Conduct data governance interviews with the organization.
3. C. Document data governance requirements.
4. D. Ensure that data decisions and impacts are communicated to the organization.

Correct Answer: A

- (Exam Topic 12)
Which of the following is the BEST method to reduce the effectiveness of phishing attacks?

1. A. User awareness
2. B. Two-factor authentication
3. C. Anti-phishing software
4. D. Periodic vulnerability scan

Correct Answer: A